Top

Category: Vulnerabilities


Vulnerabilities

Audit Finds No Critical Flaws in Firefox Update System

October 12, 2018

Via: Security Week

An audit commissioned by Mozilla for the Firefox update system revealed no critical vulnerabilities and the flaws rated “high severity” were not easy to exploit. Experts at Germany-based X41 spent 27 days analyzing the Firefox Application Update Service (AUS), including […]


Vulnerabilities

Microsoft Patches Zero-Day Under Active Attack by APT

October 10, 2018

Via: Threat Post

A zero-day vulnerability tied to the Window’s Win32k component is under active attack, warns Microsoft. Microsoft has issued a patch for a zero-day bug being actively exploited in the wild, as part of its Patch Tuesday security bulletin. The vulnerability […]


Network security, Vulnerabilities

DoD Weapon Systems Contain Security Vulnerabilities

October 10, 2018

Via: Dark Reading

GAO report outlines challenges for the US Department of Defense to handle security flaws in weapon systems. US military weapon systems are more vulnerable to cyberattacks than ever as they rely more on software and networks, according to a new […]


Vulnerabilities

SAP Patches Critical Vulnerability in BusinessObjects

October 10, 2018

Via: Security Week

This week, SAP released its October 2018 set of patches, which includes the first Hot News security note for SAP BusinessObjects in over five years. SAP included 11 security notes in its October 2018 Security Patch Day, to which it […]


Vulnerabilities, Wireless security

MikroTik routers with default credentials can be easily compromised

October 8, 2018

Via: Help Net Security

If you own a MikroTik router and you haven’t updated its RouterOS in the last month, you should do so now: Tenable Research has released details about four vulnerabilities they found in the OS, including an authenticated remote code execution […]


Vulnerabilities, Wireless security

ThreatList: 83% of Routers Contain Vulnerable Code

October 5, 2018

Via: Threat Post

A staggering 83 percent of home and office routers have vulnerabilities that could be exploited by attackers. Of those vulnerable, over a quarter harbor high-risk and critical vulnerabilities, according to a report released this week by American Consumer Institute on […]


Vulnerabilities

Adobe Patches 47 Critical Flaws in Acrobat and DC

October 2, 2018

Via: Threat Post

The update includes a security bypass bug that enables privilege escalation. Adobe on Monday posted its regularly-scheduled October security update addressing 86 vulnerabilities – more than half of which were critical flaws – in Adobe Acrobat and Reader, its set […]


Network security, Vulnerabilities

How to Keep Up Security in a Bug-Infested World

September 28, 2018

Via: Dark Reading

Good digital hygiene will lower your risk, and these six tips can help. This past April saw a milestone: the 100,000th common vulnerability and exposure (CVE). Although we’ve hit a major mark in CVE identifiers, Cisco found that the total […]


Vulnerabilities

Malware on SHEIN Servers Compromises Data of 6.4M Customers

September 27, 2018

Via: Threat Post

A data breach targeting women’s apparel giant SHEIN occurred between June and August 2018. Email addresses and encrypted passwords of over 6.4 million SHEIN customers were stolen over the summer after the women’s retailer said it suffered a “concerted criminal […]


Application security, Vulnerabilities

Your Web Applications Are More Vulnerable Than You Think

September 25, 2018

Via: Security Intelligence

A recent study shined a light on an attack vector that is often overlooked: the insecurity of web applications. According to the report, issued by Positive Technologies, 44 percent of web applications are vulnerable to data leakage and security problems. […]