New Vulnerability Risk Model Promises More-Efficient Security

New Vulnerability Risk Model Promises More-Efficient Security

Vulnerabilities happen. There’s nothing new or mysterious about that. Neither is there mystery around the fact that something must be done to address vulnerabilities. But…

View More New Vulnerability Risk Model Promises More-Efficient Security
New Dragonblood vulnerabilities found in WiFi WPA3 standard

New Dragonblood vulnerabilities found in WiFi WPA3 standard

Earlier this year in April, two security researchers disclosed details about five vulnerabilities (collectively known as Dragonblood) in the WiFi Alliance’s recently launched WPA3 WiFi…

View More New Dragonblood vulnerabilities found in WiFi WPA3 standard
Critical RCE Flaw in Palo Alto Gateways Hits Uber

Critical RCE Flaw in Palo Alto Gateways Hits Uber

A remote code execution (RCE) vulnerability has been uncovered in the GlobalProtect portal and GlobalProtect Gateway interface security products from Palo Alto Networks. It’s an…

View More Critical RCE Flaw in Palo Alto Gateways Hits Uber
Microsoft Warns of a 17-Year-Old ‘Wormable’ Bug

Microsoft Warns of a 17-Year-Old ‘Wormable’ Bug

Since WannaCry and NotPetya struck the internet just over three years ago, the security industry has scrutinized every new Windows bug that could be used to create a similar…

View More Microsoft Warns of a 17-Year-Old ‘Wormable’ Bug
A bug in firewall systems took Cloudflare customers offline

A bug in firewall systems took Cloudflare customers offline

AT&T was not the only service provider to suffer an outage Tuesday morning. Several websites relying on Cloudflare servers were knocked offline as well. According to Gizmodo, Cloudflare…

View More A bug in firewall systems took Cloudflare customers offline
Recent Firefox’s Zero-Day Flaw Was Used in Attacks Against Coinbase’s Employees

Recent Firefox’s Zero-Day Flaw Was Used in Attacks Against Coinbase’s Employees

The recent Firefox’s zero-day security flaw was used in attacks against major crypto exchange and wallet service Coinbase, according to a tweet from Coinbase security…

View More Recent Firefox’s Zero-Day Flaw Was Used in Attacks Against Coinbase’s Employees
Love Bug's Creator Tracked Down To Repair Shop In Manila

Love Bug’s Creator Tracked Down To Repair Shop In Manila

The man behind the world’s first major computer virus outbreak has admitted his guilt, 20 years after his software infected millions of machines worldwide. Filipino…

View More Love Bug’s Creator Tracked Down To Repair Shop In Manila
Linux Command-Line Editors Vulnerable To High Severity Bug

Linux Command-Line Editors Vulnerable To High Severity Bug

A bug impacting editors Vim and Neovim could allow a trojan code to escape sandbox mitigations. A high-severity bug impacting two popular command-line text editing…

View More Linux Command-Line Editors Vulnerable To High Severity Bug
Let's Encrypt Revokes Over 3 Million of Its Digital Certs

Let’s Encrypt Revokes Over 3 Million of Its Digital Certs

Let’s Encrypt, a nonprofit that has played a major role in pushing the use of encryption on the Web, today revoked more than 3 million…

View More Let’s Encrypt Revokes Over 3 Million of Its Digital Certs
Google fixes no-user-interaction bug in Android's Bluetooth component

Google fixes no-user-interaction bug in Android’s Bluetooth component

Google has patched this week a critical security flaw in Android’s Bluetooth component. If left unpatched, the vulnerability can be exploited without any user interaction…

View More Google fixes no-user-interaction bug in Android’s Bluetooth component