vulnerability

SA gov to create bug bounty program

SA gov to create bug bounty program

Looks to replace “ad hoc” vulnerability reporting from July.
Justin Hendry Apr 28 2022 11:44AM Security
Cisco Umbrella users urged to close bug

Cisco Umbrella users urged to close bug

Static SSH key lets miscreants steal admin credentials.
Richard Chirgwin Apr 22 2022 12:01PM Security
Atlassian patches auth bypass in Seraph

Atlassian patches auth bypass in Seraph

Third-party apps also affected.
Richard Chirgwin Apr 22 2022 11:05AM Security
Java 15 introduced a cryptographic vulnerability

Java 15 introduced a cryptographic vulnerability

One of 500+ in Oracle's April patch-fest.
Richard Chirgwin Apr 20 2022 12:57PM Security
Cisco offers a bumper haul of vulnerability fixes

Cisco offers a bumper haul of vulnerability fixes

Spring4Shell still keeping engineers busy.
Richard Chirgwin Apr 14 2022 11:02AM Security
Senior EU officials were targeted with Israeli spyware

Senior EU officials were targeted with Israeli spyware

Sources tell Reuters NSO software used.
Raphael Satter and Christopher Bing Apr 12 2022 6:32AM Security
Cisco next to turn up Spring4Shell-vulnerable products

Cisco next to turn up Spring4Shell-vulnerable products

Eight identified, 70 under investigation.
Richard Chirgwin Apr 6 2022 12:10PM Security
Dell ships patch for vulnerable filesystem

Dell ships patch for vulnerable filesystem

Telemetry loss, account takeover, and more.
Staff Writer Apr 6 2022 6:25AM Security
Third-party bugs squashed in IBM database software

Third-party bugs squashed in IBM database software

Apache Log4j rears its head.
Richard Chirgwin Mar 31 2022 12:11PM Security
'Back from vacation' - Lapsus$ hackers claim breach of Globant

'Back from vacation' - Lapsus$ hackers claim breach of Globant

Boasts it hauled 70GB of source code.
Staff Writer Mar 31 2022 6:43AM Security
Atlassian data centre products impacted by third-party bug

Atlassian data centre products impacted by third-party bug

Update if you can, remediate if you can't.
Richard Chirgwin Mar 28 2022 11:44AM Security
VMware ships patches to AppC vulnerabilities

VMware ships patches to AppC vulnerabilities

Found by HackerOne bounty hunter.
Richard Chirgwin Mar 25 2022 5:03PM Security
Juniper pushes out monster patch

Juniper pushes out monster patch

Some third party bugs went back to 2003.
Richard Chirgwin Mar 25 2022 6:41AM Hardware
'Single account' compromise led to Microsoft's Lapsus$ code leak

'Single account' compromise led to Microsoft's Lapsus$ code leak

Attackers were interrupted mid-operation.
Richard Chirgwin Mar 24 2022 10:59AM Security
Riverbed spinoff Aternity ships emergency software patch

Riverbed spinoff Aternity ships emergency software patch

Singapore gov researchers discover remote execution bugs.
Richard Chirgwin Mar 14 2022 12:18PM Security
Head over to the data centre and patch that UPS

Head over to the data centre and patch that UPS

Researchers ignited an APC Smart-UPS as proof-of-concept.
Richard Chirgwin Mar 9 2022 9:33AM Security
Exchange Server code execution vulnerability patched

Exchange Server code execution vulnerability patched

Along with video extension bugs and more.
Richard Chirgwin Mar 9 2022 8:35AM Security
Cisco email appliances have a brickable vulnerability

Cisco email appliances have a brickable vulnerability

Plus two other vulns patched.
Richard Chirgwin Feb 17 2022 2:00PM Security
Chrome's first zero-day bug for 2022 is reportedly being exploited

Chrome's first zero-day bug for 2022 is reportedly being exploited

Don't wait for the auto-update.
Richard Chirgwin Feb 16 2022 9:15AM Security
SAP issues patches for critical bugs

SAP issues patches for critical bugs

US DHS warns exploits could halt all operations.
Richard Chirgwin Feb 10 2022 12:00PM Security

Log In

  |  Forgot your password?