Vulnerabilities Vulnerabilities

Continuous news on hardware and software vulnerabilities from proof of concept to zero day, the dangerous to the novel. Follow the patching topic to narrow your news to emerging fixes.

Yahoo says email-snatching XSS worth a $12.50 coupon

Yahoo says email-snatching XSS worth a $12.50 coupon

Flaws allowed email account hijacking.
Ry Crozier Oct 1 2013 1:12PM Security
Yahoo pays out $12.50 bug bounty

Yahoo pays out $12.50 bug bounty

As store credit for Yahoo gear, researchers say.
Ry Crozier Oct 1 2013 11:39AM Security
'Watering hole' attacks rise in prominence

'Watering hole' attacks rise in prominence

But have internet users learned anything?
Staff Writers Sep 24 2013 11:08AM Security
Hack Apple's Touch ID and get $20,000, a sex book and a bottle of whiskey

Hack Apple's Touch ID and get $20,000, a sex book and a bottle of whiskey

Biometric authentication targeted, butlegacy password lock already bypassed.
Adam Greenberg Sep 20 2013 4:03PM Security
Firefox 24 fixes nine critical bugs

Firefox 24 fixes nine critical bugs

19 bugs swatted.
Danielle Walker Sep 20 2013 7:00AM Security
NASDAQ slow to plug site vulns, pen tester says

NASDAQ slow to plug site vulns, pen tester says

Swiss pen testers report flaw.
Danielle Walker Sep 18 2013 7:00AM Security
Syria bombing phishing emails serve exploits

Syria bombing phishing emails serve exploits

Reader and Java targeted.
Danielle Walker Sep 10 2013 10:00AM Security
Microsoft to patch Outlook flaw linked to email preview

Microsoft to patch Outlook flaw linked to email preview

Office 2007 and 2010 affected.
Danielle Walker Sep 10 2013 6:06AM Security
Microsoft Outlook flaw exploited with email preview

Microsoft Outlook flaw exploited with email preview

Redmond to issue 14 patches.
Danielle Walker Sep 9 2013 7:11AM Security
Safari exploit published

Safari exploit published

Affects iOS 6.0.1, and OS X 10.7, 10.8.
Darren Pauli Sep 5 2013 3:24AM Security
Java 6 zero-day added to Neutrino exploit kit

Java 6 zero-day added to Neutrino exploit kit

Half of users still vulnerable.
Danielle Walker Aug 28 2013 1:30PM Security
Pinterest, StumbleUpon patch privacy flaws

Pinterest, StumbleUpon patch privacy flaws

Names, location and email addresses exposed.
Darren Pauli Aug 27 2013 11:57AM Security
Zuckerberg Facebook hacker gets $10k fundraiser bug bounty

Zuckerberg Facebook hacker gets $10k fundraiser bug bounty

Facebook says it 'failed' in its communication.
Darren Pauli Aug 21 2013 2:44PM Security
Apple App Store misses backdoored apps

Apple App Store misses backdoored apps

App could silently tweet, compromise Safari.
Darren Pauli Aug 19 2013 3:00PM Security
Researcher demos Facebook bug with Zuckerberg Wall post

Researcher demos Facebook bug with Zuckerberg Wall post

'Dear Mark, sorry for breaking your privacy'.
Darren Pauli Aug 19 2013 11:35AM Security
Microsoft pulls ASLR DEP bypass patch

Microsoft pulls ASLR DEP bypass patch

Fix caused Exchange 2013 glitch.
Dan Kaplan Aug 15 2013 7:00AM Security
Microsoft patches 23 bugs

Microsoft patches 23 bugs

Eliminates image pointers.
Danielle Walker Aug 14 2013 9:00AM Security
Joomla patched upload flaw amid attacks

Joomla patched upload flaw amid attacks

Fix rated critical.
Darren Pauli Aug 13 2013 12:51PM Security
IE, MS Server critical bugs to be patched

IE, MS Server critical bugs to be patched

Browser is remotely exploitable.
Darren Pauli Aug 9 2013 12:30PM Security
OpenX releases malvertising backdoor fix

OpenX releases malvertising backdoor fix

Says paid offerings unaffected.
Darren Pauli Aug 8 2013 12:11PM Security

Log In

  |  Forgot your password?