Pro New Spectre-like CPU vulnerability bypasses existing defences SWAPGS vulnerability can allow attackers to access contents of kernel memory addresses 8 Aug
Pro Meltdown, Spectre: what’s the ARM and AMD exposure? The answer, thankfully, is not much, but it is there 10 Jan
Pro Meltdown, Spectre patches: where to start and what to expect Pretty much everything in your enterprise needs a patch. Start now, and prioritise 10 Jan
Pro Intel responds to kernel bug, downplaying home impact Chip maker said the patches for the CPU vulnerability, due next week, would bring a negligible performance hit to the average user, but positions bug... 4 Jan
Pro Vulnerability hits Intel enterprise PCs going back 10 years Security hole involves enterprise IT management features in firmware 2 May
Pro Slack bug paved the way user access theft Problem deals with the postMessage API the chat application uses to exchange data between browser windows 6 Mar
Pro Microsoft fixes Google-divulged Windows vulnerability Bug in Windows Vista, 7, 8.1 and 10 one of many patched in current Patch Tuesday 9 Nov
Pro Researchers add software bugs to reduce number of software bugs A new strategy for training bug-finding tools could help catch more vulnerabilities 8 Jul
Pro Symantec bugfest highlights the dangers of security software Security software has worse flaws than the average application 6 Jul
Pro OpenSSH bug exposes servers to brute-force password attacks Keyboard-interactive authentication setting could allow for thousands of password retries, a researcher found 23 Jul
Pro Average of 24 vulnerabilities per app from buggy components Developers often unwittingly use components that contain flaws 18 Jun
Pro Google discloses unpatched Windows vulnerability Microsoft didn't fix the bug within a 90-day deadline Google imposed 5 Jan
Pro Reporting software flaws without the drama New guide from Bugcrowd developed with legal firm 25 Jul
Pro Emergency update for Apache Struts fixes incomplete patch for critical flaw Previous patch did not block an attack vector that could lead to remote code execution 29 Apr
Pro Hacker claims about bug in fixed OpenSSL likely a scam Claims of a new vulnerability found, and on sale for 2.5 bitcoins 28 Apr
Pro New critical vulnerability found in Internet Explorer IE 6, 7 and 8 affected and may prompt out of schedule fix 28 Apr
Pro Open source trounces proprietary software for code defects Coverity analysis argues that Heartbleed flaw was a difficult case 17 Apr
Pro VMware promises Heartbleed patches by end of week More than two dozen affected product versions identified so far, with updates under way 15 Apr
Pro NetFort offers Heartbleed vulnerability detection LANGuardian 12.0.7 mitigates risks of OpenSSL bug 15 Apr
Subscribers 0
Fans 0
Followers 0
Followers