Security vulnerabilities stories - Page 15
New edge vulnerability revealed by Forescout
Wed, 9th Dec 2020
#
iot security
#
iot
#
edge security
AMNESIA:33 is a set of 33 memory-corrupting vulnerabilities affecting four open source TCP/IP stacks: uIP; FNET; picoTCP; and Nut/Net.
Claroty finds four vulnerabilities in Schneider Electric OT device
Thu, 19th Nov 2020
#
datacentre infrastructure
#
encryption
#
power / energy
Unmitigated vulnerabilities could give an attacker access to the device, enabling the attacker to break encryption, modify code, and run certain commands.
Secure Code Warrior launches offering to help developers adopt a security mindset
Fri, 13th Nov 2020
#
cybersecurity
#
developers
#
security vulnerabilities
Secure Code Warrior launches Missions, an interactive platform that allows developers to practice coding skills and tackle real-world security vulnerabilities.
Companies exploited by high-risk vulnerabilities, new research shows
Wed, 4th Nov 2020
#
security vulnerabilities
#
exploits
#
positive technologies
84% of companies have high-risk vulnerabilities on their network perimeter, with half of them fixable through software updates, says Positive Technologies.
GitHub's code vulnerability scanning tool now generally available
Fri, 16th Oct 2020
#
martech
#
application security
#
apm
GitHub has recently rolled out code scanning to help developers detect and prevent vulnerabilities from popping up in their open source and enterprise code.
McAfee finds vulnerabilities in 'temi' the videoconferencing robot
Tue, 22nd Sep 2020
#
robots
#
uc
#
casb
Temi is commonly used in environments including businesses, healthcare, retail, hospitality, and other environments including the home.
OT networks warned of vulnerabilities in CodeMeter software
Wed, 16th Sep 2020
#
iot
#
industrial iot
#
security vulnerabilities
Manufacturers using Wibu-Systems CodeMeter are urged to update to version 7.10 due to vulnerabilities that could allow attackers to take control of OT networks.
Ripple20 threat has potential for 'vast exploitation', ExtraHop researchers find
Tue, 15th Sep 2020
#
advanced persistent threat protection
#
ndr
#
extrahop
One in three IT environments vulnerable to Ripple20 cyber threat, says ExtraHop. Attackers can exploit 19 vulnerabilities in the Treck networking stack.
Ripple20 threat could affect 35% of all IT environments – ExtraHop
Mon, 14th Sep 2020
#
advanced persistent threat protection
#
extrahop
#
security vulnerabilities
The vulnerabilities have the potential to ‘ripple’ through complex software supply chains, enabling attackers to steal data or execute code.
VPN vulnerabilities pose serious risk to OT Networks
Thu, 30th Jul 2020
#
ddos
#
vpns
#
security vulnerabilities
Vulnerable VPN servers and clients used in critical industries have been discovered by cybersecurity firm Claroty, potentially leading to security breaches.
Gallagher fortifies cybersecurity reporting as NZ's first CVE Numbering Authority
Wed, 29th Jul 2020
#
cybersecurity
#
security vulnerabilities
#
mitre
New Zealand-based Gallagher has become an authorised CVE Numbering Authority, allowing it to assign and communicate security vulnerabilities in its products.
RedShield develops 'virtual shield' to protect against SAP RECON vulnerability
Fri, 24th Jul 2020
#
sap
#
security vulnerabilities
#
redshield
The vulnerability (CVE-2020-6287) could allow attackers to take over SAP systems by remotely accessing the server.
Prevasio unveils threat analysis sandbox for containers
Mon, 13th Jul 2020
#
virtualisation
#
devops
#
application security
Prevasio launches industry's first dynamic threat and vulnerability analysis system for Docker containers. @PrevasioAnalyzer #Cybersecurity.
C-DATA OLT firmware has intentional backdoors, allege researchers
Mon, 13th Jul 2020
#
encryption
#
cybersecurity
#
security vulnerabilities
A range of optical line termination (OLT) devices made by China-based manufacturer and vendor C-DATA may be riddled with vulnerabilities and backdoors.
IOTDC extends data centre services in Port Melbourne and beyond
Thu, 9th Jul 2020
#
dc
#
hyperscale
#
bandwidth
IOT Data Centers adds new facility in Melbourne to its network of geographically distributed data centers. Now accepting customers.
Cisco ASA firewall users urged to patch systems now
Mon, 11th May 2020
#
firewalls
#
network infrastructure
#
network security
Since early January 2020, the number of internet-accessible Cisco ASA devices considered vulnerable has jumped from 170,000 to 220,000.
Microsoft IE vulnerability to go unpatched until mid-Feb
Tue, 28th Jan 2020
#
microsoft
#
internet explorer
#
zero day malware
A blog post from security vendor ESET has outlined the risk of the zero-day for those who are still using the relic browser of internet-past.
Zero-day Internet Explorer vulnerability exploited in the wild
Wed, 25th Sep 2019
#
microsoft
#
security vulnerabilities
#
patching
Microsoft released an out-of-band patch for the vulnerability discovered by Google researchers due to the report that it has been exploited in the wild.
GitHub amps up vulnerability reporting capabilities
Fri, 20th Sep 2019
#
martech
#
apm
#
cybersecurity
GitHub has announced new capabilities that make it easier for developers to report vulnerabilities directly from their repositories.
Apple issues clarification on extent of iOS malware infection
Wed, 11th Sep 2019
#
endpoint protection
#
edr
#
personal computing devices
Apple clarifies that an iOS malware attack impacted fewer than a dozen Uighur-focused websites, dismissing Google's claims of mass exploitation.