π΄ 10 Tips for Building Compliance by Design into Cloud Architecture π΄
π Read
via "Dark Reading: ".
A pair of experts pass along lessons learned while building out the team and processes necessary to support Starbucks' mobile app.π Read
via "Dark Reading: ".
Dark Reading
Slideshows - Dark Reading
Dark Reading: Connecting The Information Security Community. Explore our slideshows.
π΄ Disclosure Does Little to Dissuade Cyber Spies π΄
π Read
via "Dark Reading: ".
In the past, outing nation-state cyber espionage groups caused a few to close up shop, but nowadays actors are more likely to switch to new infrastructure and continue operations.π Read
via "Dark Reading: ".
Darkreading
Disclosure Does Little to Dissuade Cyber Spies
In the past, outing nation-state cyber espionage groups caused a few to close up shop, but nowadays actors are more likely to switch to new infrastructure and continue operations.
π΄ The Edge Cartoon Contest: Need a Lift? π΄
π Read
via "Dark Reading: ".
Feeling creative? Submit your caption in the comments, and our panel of experts will reward the winner with a $25 Amazon gift card.π Read
via "Dark Reading: ".
Dark Reading
The Edge
Feeling creative? Submit your caption in the comments, and our panel of experts will reward the winner with a $25 Amazon gift card.
π΄ Google Launches OpenTitan Project to Open Source Chip Security π΄
π Read
via "Dark Reading: ".
OpenTitan is an open source collaboration among Google and technology companies to strengthen root-of-trust chip design.π Read
via "Dark Reading: ".
Dark Reading
Google Launches OpenTitan Project to Open Source Chip Security
OpenTitan is an open source collaboration among Google and technology companies to strengthen root-of-trust chip design.
ATENTIONβΌ New - CVE-2010-2222
π Read
via "National Vulnerability Database".
The _ger_parse_control function in Red Hat Directory Server 8 and the 389 Directory Server allows attackers to cause a denial of service (NULL pointer dereference) via a crafted search query.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2010-2064 (rpcbind)
π Read
via "National Vulnerability Database".
rpcbind 0.2.0 allows local users to write to arbitrary files or gain privileges via a symlink attack on (1) /tmp/portmap.xdr and (2) /tmp/rpcbind.xdr.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2010-2061 (rpcbind)
π Read
via "National Vulnerability Database".
rpcbind 0.2.0 does not properly validate (1) /tmp/portmap.xdr and (2) /tmp/rpcbind.xdr, which can be created by an attacker before the daemon is started.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2005-2354
π Read
via "National Vulnerability Database".
Nvu 0.99+1.0pre uses an old copy of Mozilla XPCOM which can result in multiple security issues.π Read
via "National Vulnerability Database".
π΄ CrowdStrike Adds New Products & Web Store Apps π΄
π Read
via "Dark Reading: ".
Company introduces Falcon for AWS, Falcon Firewall Management, and third-party applications.π Read
via "Dark Reading: ".
Dark Reading
CrowdStrike Adds New Products & Web Store Apps
Company introduces Falcon for AWS, Falcon Firewall Management, and third-party applications.
π΄ Siemens PLC Feature Can Be Exploited for Evil - and for Good π΄
π Read
via "Dark Reading: ".
A hidden feature in some newer models of the vendor's programmable logic controllers leaves the devices open to attack. Siemens says it plans to fix it.π Read
via "Dark Reading: ".
Dark Reading
Siemens PLC Feature Can Be Exploited for Evil - and for Good
A hidden feature in some newer models of the vendor's programmable logic controllers leaves the devices open to attack. Siemens says it plans to fix it.
ATENTIONβΌ New - CVE-2007-2841
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-3947. Reason: This candidate is a reservation duplicate of CVE-2007-3947. Notes: All CVE users should reference CVE-2007-3947 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2007-0899
π Read
via "National Vulnerability Database".
There is a possible heap overflow in libclamav/fsg.c before 0.100.0.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2006-4245
π Read
via "National Vulnerability Database".
archivemail 0.6.2 uses temporary files insecurely leading to a possible race condition.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2006-4243
π Read
via "National Vulnerability Database".
linux vserver 2.6 before 2.6.17 suffers from privilege escalation in remount code.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2006-3100
π Read
via "National Vulnerability Database".
termpkg 3.3 suffers from buffer overflow.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2006-0062
π Read
via "National Vulnerability Database".
xlockmore 5.13 allows potential xlock bypass when FVWM switches to the same virtual desktop as a new Gaim window.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2006-0061
π Read
via "National Vulnerability Database".
xlockmore 5.13 and 5.22 segfaults when using libpam-opensc and returns the underlying xsession. This allows unauthorized users access to the X session.π Read
via "National Vulnerability Database".
π΅ Free antivirus apps requesting huge amounts of dangerous permissions they donβt need π΅
π Read
via "VPNpro".
π Read
via "VPNpro".
VPNpro
Warning: Using These Apps Could Put You at Risk
Our breaking research reveals that the top 15 free antivirus apps in Google Play are requesting huge amounts of dangerous permissions they dont need.
β Founders of βworthless cryptocurrencyβ ATM Coin fined over $4.25m scam β
π Read
via "Naked Security".
Invest in "binary options," they said, neglecting to mention the software set up to rig transactions so that customers lost the gamble.π Read
via "Naked Security".
Naked Security
Founders of βworthless cryptocurrencyβ ATM Coin fined over $4.25m scam
Invest in βbinary options,β they said, neglecting to mention the software set up to rig transactions so that customers lost the gamble.
β Ransomware attacks in Spain leave radio station in βhysteriaβ β
π Read
via "Naked Security".
A ransomware attack has ransacked at least two Spanish companies, leaving their employees without computer access.π Read
via "Naked Security".
Naked Security
Ransomware attacks in Spain leave radio station in βhysteriaβ
A ransomware attack has ransacked at least two Spanish companies, leaving their employees without computer access.