Vulnerabilities Vulnerabilities

Continuous news on hardware and software vulnerabilities from proof of concept to zero day, the dangerous to the novel. Follow the patching topic to narrow your news to emerging fixes.

Joomla! XSS turns users to admins

Joomla! XSS turns users to admins

Affects versions up to 1.70
SC Australia Staff Sep 30 2011 8:58AM Security
Unpatched Java flaws cause the most infections

Unpatched Java flaws cause the most infections

Adobe a close runner up.
Dan Raywood Sep 29 2011 10:24AM Security
Adelaide Uni researcher reveals Apple password flaw

Adelaide Uni researcher reveals Apple password flaw

Lion passwords can be cracked or changed.
Darren Pauli Sep 26 2011 10:30AM Security
Flash zero-day patched

Flash zero-day patched

Flaw exploited for phishing XXS attacks.
Dan Kaplan Sep 22 2011 10:09AM Security
Apple password gaffe revealed by Adelaide Uni researcher

Apple password gaffe revealed by Adelaide Uni researcher

Lion passwords can be cracked or changed.
Darren Pauli Sep 20 2011 11:54PM Security
Blackboard e-learning platform exposes student data

Blackboard e-learning platform exposes student data

Zero-day vulnerabiilties expose millions of student exams, tests and data.
Darren Pauli Sep 19 2011 11:33AM Security
Millions of student exams, tests and data exposed

Millions of student exams, tests and data exposed

Exclusive: Zero-day holes found in the Blackboard learning platform.
Darren Pauli Sep 16 2011 8:35AM Security
Zero day industrial control system exploits published

Zero day industrial control system exploits published

Power, water and waste SCADA systems affected.
Darren Pauli Sep 15 2011 6:37PM Security
Microsoft patches five holes, nukes six certificates

Microsoft patches five holes, nukes six certificates

Light updates hard on DigiNotar.
Dan Raywood Sep 15 2011 7:46AM Security
OpenSSH released, plays in sandbox

OpenSSH released, plays in sandbox

Pre-auth attacks are dead.
Darren Pauli Sep 8 2011 4:51PM Security
Kaspersky website vulnerable to XSS

Kaspersky website vulnerable to XSS

Reddit post outs flaw.
SC Australia Staff Sep 1 2011 7:36PM Security
Researchers bypass Google redirect notice

Researchers bypass Google redirect notice

Burmese hacker group post proof of concept.
SC Australia Staff Aug 29 2011 1:27PM Security
Skype XSS hole is harmless

Skype XSS hole is harmless

Exploit resembled another Skype attack.
Darren Pauli Aug 23 2011 10:04AM Security
Manual vulnerability discovery gets smarter, faster

Manual vulnerability discovery gets smarter, faster

Automated vulnerability research falls short.
Darren Pauli Aug 22 2011 2:56PM Security
Mobile charging stations steal data from devices

Mobile charging stations steal data from devices

USB mode silently comes to life.
Darren Pauli Aug 22 2011 1:51PM Hardware
Jailbroken idevices pwned by charging stations

Jailbroken idevices pwned by charging stations

USB mode silently comes to life.
Darren Pauli Aug 19 2011 4:04PM Security
Analysis: Perimeter exploit exposure

Analysis: Perimeter exploit exposure

Vulnerability and patch management is key.
Marcus Carey, researcher, Rapid7 Aug 18 2011 1:00PM Security
Botnets go search crazy

Botnets go search crazy

Hundreds of searches found to use paging parameter queries.
Dan Raywood Aug 17 2011 12:23PM Security
Microsoft Patch Tuesday fixes 22 vulnerabilities

Microsoft Patch Tuesday fixes 22 vulnerabilities

Two critical bulletins, nine important and two moderate.
Greg Masters Aug 10 2011 3:31PM Security
Siemens PLC vulnerabilities: it just gets worse

Siemens PLC vulnerabilities: it just gets worse

Comment: Vendors need to lead the charge.
Eric Byres Aug 10 2011 3:16PM Security

Log In

  |  Forgot your password?