Top

Tag: vulnerabilities


Vulnerabilities

On Heels of Criticism, Newly-Released Google Chrome 70 Prioritizes Privacy

October 17, 2018

Via: Threat Post

Google has lifted the curtain on its latest version of Chrome, which the tech giant has pledged touts more data privacy features, as well as fixes for high-priority vulnerabilities. The release comes after Google had promised updates in Chrome 70 […]


Vulnerabilities, Wireless security

MikroTik routers with default credentials can be easily compromised

October 8, 2018

Via: Help Net Security

If you own a MikroTik router and you haven’t updated its RouterOS in the last month, you should do so now: Tenable Research has released details about four vulnerabilities they found in the OS, including an authenticated remote code execution […]


Vulnerabilities, Wireless security

ThreatList: 83% of Routers Contain Vulnerable Code

October 5, 2018

Via: Threat Post

A staggering 83 percent of home and office routers have vulnerabilities that could be exploited by attackers. Of those vulnerable, over a quarter harbor high-risk and critical vulnerabilities, according to a report released this week by American Consumer Institute on […]


Vulnerabilities

Adobe Patches 47 Critical Flaws in Acrobat and DC

October 2, 2018

Via: Threat Post

The update includes a security bypass bug that enables privilege escalation. Adobe on Monday posted its regularly-scheduled October security update addressing 86 vulnerabilities – more than half of which were critical flaws – in Adobe Acrobat and Reader, its set […]


Network security, Vulnerabilities

How to Keep Up Security in a Bug-Infested World

September 28, 2018

Via: Dark Reading

Good digital hygiene will lower your risk, and these six tips can help. This past April saw a milestone: the 100,000th common vulnerability and exposure (CVE). Although we’ve hit a major mark in CVE identifiers, Cisco found that the total […]


Vulnerabilities

Cisco Patches Code Execution in Webex Player

September 21, 2018

Via: Security Week

Cisco this week addressed vulnerabilities in the Webex Network Recording Player for Advanced Recording Format (ARF) that could allow a remote attacker to execute arbitrary code on a targeted system. The Webex Meetings Server is a multimedia conferencing solution that […]


Vulnerabilities

Facebook Offers Rewards for Access Token Exposure Flaws

September 18, 2018

Via: Security Week

Facebook announced on Monday that it has expanded its bug bounty program to introduce rewards for reports describing vulnerabilities that involve the exposure of user access tokens. Access tokens allow users to log into third-party applications and websites through Facebook. […]


Vulnerabilities

2 Billion Bluetooth Devices Remain Exposed to Airborne Attack Vulnerabilities

September 14, 2018

Via: Dark Reading

One year after Armis disclosed ‘BlueBorne,’ a large number of Android, Linux, and iOS devices remain unpatched. One year after security vendor Armis disclosed a set of nine exploitable vulnerabilities in Bluetooth, some 2 billion devices — including hundreds of […]


Vulnerabilities

Microsoft Patches Windows Zero-Day Disclosed via Twitter

September 12, 2018

Via: Security Week

Microsoft’s Patch Tuesday updates for September 2018 address over 60 vulnerabilities, including a zero-day disclosed by a researcher and exploited shortly after by a threat actor. The actively exploited flaw, identified as CVE-2018-8440, was disclosed on August 27 by a […]


Application security, Security

Security Think Tank: How to manage software vulnerabilities

September 6, 2018

Via: Computer Weekly

Software vulnerabilities continue to be discovered on a daily basis, and it can often be a race against the hacker to apply relevant updates and remediate a vulnerability before the weakness is exploited. This is particularly the case for zero-day […]