Security vulnerabilities stories - Page 19

Apple has been quick to address the major CVE-2017-13872 security flaw in its macOS High Sierra 10.13.1 operating system.

GitHub has unveiled security improvements that will allow developers to track which dependencies are associated with public security vulnerabilities.

So, if the proliferation of UC applications is a problem, what’s the solution? Session border controllers, also known as SBCs.

Duo Security's study finds troubling gaps in Apple's EFI firmware updates, leaving many Macs exposed to potential sophisticated cyber threats.

Equifax breach reveals well-known vulnerability, patch available long before attack, says Flexera. More hacks likely to come.

As news spreads of the Bluetooth zero-day that affects more than 5 billion devices, security experts are warning users to use Bluetooth with caution.

Every security solution on the market may be completely powerless to stop a vulnerability that could allow any malware to bypass Windows 10 systems.

Samsung is the latest vendor to jump into the world of bug bounties through the launch of Samsung Mobile Products Rewards Program.

Android users are being urged to apply any security patches for their devices, after security researchers discovered a ‘high severity’ vulnerability.

78% of respondents said they would deem an act as cyber war if a nation-state was behind a successful or attempted hack of another country’s election.

Members of a New Zealand online tech community discovered a potential vulnerability in Vodafone New Zealand’s ‘My Vodafone’ platform yesterday.

Urgent call for updates: Apache Struts hit by critical vulnerability, CVE-2017-9805, risking remote code execution.

Trend Micro has put more than US$500,000 towards a prize pool that aims to find security vulnerabilities at the upcoming Mobile Pwn2Own contest.

Traditionally organisations keep bug & vulnerability findings for themselves, but Oracle and Associate Professor Dietrich take a different approach.

Microsoft is offering up to US$250,000 in a new bug bounty program focused exclusively on ironing out the kinks in Windows 10.

A New Zealand security assessment and compliance system has received recognition from the US-based Center for Internet Security (CIS).

Most of us get a mental image of an anonymous, hooded figure, bent over a computer in some dark recess of the web when the word hacker is mentioned.

Information security can be a noisy place. As a career security guy my experiences have given me a deep understanding of attackers & the enterprise.

You don’t hand the keys to the car, the liquor cabinet & the gun rack to a 16 year old. If all users have blanket local admin access it's just as bad.

Much ink is still being expended trying to determine who was responsible for WannaCry and what their motives were. But there's a bigger lesson here.