Archives for May, 2017
Senators introduced a bill last week to establish a bug bounty pilot program within the Department of Homeland Security.
A high-severity vulnerability in sudo has been patched in a number of Linux distributions; the flaw allows local attackers to elevate privileges to root.
Cisco is prepping fixes for two of its products affected by last week's Samba vulnerability. Netgear has also pushed out a fix for NAS devices that were affected.
Google announced today new security features in Gmail, including the news that it will enhance early phishing detection in Gmail through dedicated machine learning.
Ecommerce sites using the Yopify plugin were leaking customers’ names, locations and purchases.
Developers behind FreeRADIUS, an open source implementation of the networking protocol RADIUS, are encouraging users to update to address an authentication bypass found in the server.
The ShadowBrokers announced details on how to subscribe to its Monthly Dump Service, which is available for 100 Zcash.
Microsoft quietly patched a critical vulnerability found by Google's Project Zero team in the Malware Protection Engine.
Mark Dowd discusses why certain exploit mitigations have been so successful in driving up the cost of exploit development for attackers.
Pacemakers and pacemaker programmers lack authentication and are plagued with thousands of software vulnerabilities across leading manufacturers.