Vulnerabilities Vulnerabilities

Continuous news on hardware and software vulnerabilities from proof of concept to zero day, the dangerous to the novel. Follow the patching topic to narrow your news to emerging fixes.

No fix for Office zero day in pending Patch Tuesday

No fix for Office zero day in pending Patch Tuesday

Eight fixes prepped.
Adam Greenberg Nov 11 2013 7:25AM Security
25 Years of Vulnerabilities: Research Report

25 Years of Vulnerabilities: Research Report

With 25 years of vulnerability data now available, this report takes a historical look at vulnerabilities over the years
Nov 8 2013 11:56AM
Twitter accounts were open to highjack via CSRF flaw

Twitter accounts were open to highjack via CSRF flaw

Attackers could read direct messages, post tweets.
Darren Pauli Nov 7 2013 1:04PM Security
Microsoft active zero-day attacks target South Pacific

Microsoft active zero-day attacks target South Pacific

Workaround blocks TIFF graphic format.
Darren Pauli Nov 6 2013 11:31AM Security
Mozilla patches critical memory bugs

Mozilla patches critical memory bugs

Fixes 15 bugs with 10 patches.
Danielle Walker Oct 31 2013 9:13AM Security
iOS apps vulnerable to HTTP request hijacking

iOS apps vulnerable to HTTP request hijacking

Exploitable in several iOS apps.
Adam Greenberg Oct 30 2013 12:35PM Security
#BPX audio: Michael Sulmeyer: The Political Economy of the Cyber-security and Malware Markets

#BPX audio: Michael Sulmeyer: The Political Economy of the Cyber-security and Malware Markets

Sulmeyer's talk drew heated debate from delegates.
Darren Pauli Oct 25 2013 9:04AM Security
New tool helps analyse exploits

New tool helps analyse exploits

First Java exploit sandbox developed.
Darren Pauli Oct 21 2013 10:15AM Security
35,000 sites including Fortune 1000 hacked via nasty vBulletin hole

35,000 sites including Fortune 1000 hacked via nasty vBulletin hole

Tools make hacks a breeze.
Adam Greenberg Oct 17 2013 2:00PM Security
51 Java holes patched

51 Java holes patched

And a dozen rated critical.
Danielle Walker Oct 17 2013 10:00AM Security
Backdoor found in D-Link routers

Backdoor found in D-Link routers

Known since 2010.
Juha Saarinen Oct 14 2013 1:00PM Security
Steam contains account bypass flaw, researcher says

Steam contains account bypass flaw, researcher says

Disclosed publicly after support ticket closed.
Darren Pauli Oct 11 2013 4:33PM Security
Google bug bounties now include open source

Google bug bounties now include open source

Rewards for 'down-to-earth fixes' for BIND, Linux kernel, lighttpd, Sendmail, OpenVPN and others.
Adam Greenberg Oct 11 2013 9:23AM Security
Adobe fixes critical bugs in Reader, Acrobat and RoboHelp publishing tool

Adobe fixes critical bugs in Reader, Acrobat and RoboHelp publishing tool

Updates Adobe Reader XI and Acrobat XI from version 11.0.04 to 11.0.05.
Danielle Walker Oct 11 2013 7:00AM Security
Big businesses ignoring critical website flaws

Big businesses ignoring critical website flaws

Retailers, tech companies pushing vulnerable code.
Darren Pauli Oct 10 2013 3:40PM Security
Microsoft fixes 28 bugs, including zero-days

Microsoft fixes 28 bugs, including zero-days

Zero days targeted Japan, Korea.
Danielle Walker Oct 9 2013 4:47PM Security
New attack technique lands researcher $100k Microsoft bug bounty

New attack technique lands researcher $100k Microsoft bug bounty

Redmond quiet on details.
Darren Pauli Oct 9 2013 8:41AM Security
Microsoft pays out first US$100,000 bug bounty

Microsoft pays out first US$100,000 bug bounty

Fixes browser bug.
Jim Finkle Oct 9 2013 8:40AM Security
Recent WHMCS flaw used in PureVPN hack

Recent WHMCS flaw used in PureVPN hack

No information handed over to authorities, PureVPN says.
Juha Saarinen Oct 8 2013 7:00AM Security
Yahoo! dumps t-shirt bug bounty for $15,000 cheques

Yahoo! dumps t-shirt bug bounty for $15,000 cheques

Security engineer bought tees with own cash
Darren Pauli Oct 3 2013 2:25PM Security

Log In

  |  Forgot your password?