Siemens patches one security vuln, leaves folks to block second
LOGO owners on alert Siemens has plugged a man-in-the-middle vulnerability in its LOGO!8 BM FS-05 industrial automation hardware – but a second remains unpatched.…
View ArticleEverybody without Android Oreo vulnerable to overlay attack
'Toast' micro-messages can burn just about every Android users Any unpatched Android phone running a version older than Oreo is going to need patching fairly soon, with researchers turning up a class...
View ArticleBillions of devices imperiled by new clickless Bluetooth attack
Blueborne exploit works against unpatched devices running Android, Linux, or Windows.
View ArticleD-Link router riddled with 0-day flaws
'Basically, everything was pwned, from the Lan to the Wan' A security researcher has shamed D‑Link by publicly disclosing 10 serious, as-yet unpatched vulnerabilities in a line of consumer-grade...
View ArticleNew Equifax CEO offers “sincere and total apology” to consumers
Embattled company vows to give consumers more control over their credit data.
View ArticleEquifax rival TransUnion also sends site visitors to malicious pages
People visiting TransUnionrsquo;s Central American redirected to a potpourri of badness.
View ArticleTop UK Organisations Still Too Exposed to Cyber Threats According to New...
LONDON – October 17, 2017 - Unpatched web infrastructure and de-centralised web management practices are leaving UK organisations vulnerable to cyber-attacks and high profile data breaches. New RiskIQ...
View ArticleUnpatched Bugs Rampant on Mobile Devices in Financial Services Firms
More than a quarter of mobile devices used by financial services employees carry known vulnerabilities, according to a recent report.
View ArticleBad Rabbit used NSA “EternalRomance” exploit to spread, researchers say
EternalRomance exploit was used to move across networks after initial attack.
View ArticleFlaw in Google Bug Tracker Exposed Reports About Unpatched Vulnerabilities
Google’s Issue Tracker contained until recently a vulnerability that would allow an external party access to any unpatched bug listed and described in the database.
View ArticleBrother Printers Susceptible to Remote Denial of Service Attacks
Trustwave discloses an unpatched vulnerability in Brother printers with the Debut embedded webserver after numerous attempts to contact the vendor failed.
View ArticleOh Brother: Hackers can crash your unpatched printers – researchers
DoSsing for fun and profit not just a 'nuisance', they warn Security researchers have said they've uncovered a new way for hackers to crash Brother printers.…
View ArticleOracle Issues Emergency Patch for Critical Peoplesoft Vulnerabilities
New Peoplesoft JoltAndBleed vulnerabilities could potentially enable an attacker to leak information and gain control of an unpatched system.
View ArticleMailsploit: It’s 2017, and you can spoof the ‘from’ in email to fool filters
Message client vendors have had 25 years to get RFC 1342 right Penetration tester Sabri Haddouche has reintroduced the world to email source spoofing, bypassing spam filters and protections like...
View ArticleOracle app server hack let one attacker mine $226,000 worth of cryptocoins
Exploit published in December makes cracking unpatched Oracle servers easy.
View ArticleMeltdown and Spectre: Good news for AMD users, (more) bad news for Intel
Windows patches are fixed, but microcode updates are causing even more trouble.
View ArticleBad news: 43% of login attempts ‘malicious’ Good news: Er, umm…
Also bad: Unpatched systems, unsecured APIs, IoT gear, anthrax candy, bottomless pits An extraordinary 43 per cent of all attempted online account logins are malicious, Akamai claims in its latest...
View ArticleWindows 10 bug: Google again reveals code for ‘important’ unpatched flaw
For the second time in a week, Google reveals another unpatched Windows 10 vulnerability.
View ArticleMassive Malspam Campaign Targets Unpatched Systems
Morphisec said that it has detected several malicious word documents – part of a “massive” malspam campaign – that takes advantage of a critical Adobe Flash Player vulnerability discovered earlier this...
View ArticleAfter Oracle WebLogic miner attack, critical Apache Solr bug is now targeted
Money-hungry hackers have used over 1,400 unpatched Apache Solr servers to install a cryptocurrency miner.
View Article
