Security News

Unpatched Flaws in Python, Java Allow Firewall Bypass (SecurityWeek)
2017-02-21 13:08

App-in-the-Middle Attacks Bypass Android Sandbox: Skycure (SecurityWeek)
2017-02-17 16:53

Researchers bypass ASLR protection with simple JavaScript code (Help Net Security)
2017-02-15 20:41

A group of researchers from the Systems and Network Security Group at VU Amsterdam have discovered a way to bypass address space layout randomization (ASLR) protections of major operating systems...

Cisco Patches Authentication Bypass in Cisco Prime Home (Threatpost)
2017-02-03 15:23

Cisco patched a critical remote authentication bypass vulnerability in its Prime Home remote management tool used by service providers.

Critical Cisco Prime Home Flaw Allows Authentication Bypass (SecurityWeek)
2017-02-02 13:21

Hundreds of Thousands of Netgear Routers Vulnerable to Password Bypass (Threatpost)
2017-01-30 21:48

Hundreds of thousands–potentially more than one million–Netgear routers are susceptible to a pair of vulnerabilities that can lead to password disclosure.

Dridex Trojan Uses New Tactic to Bypass User Account Control (SecurityWeek)
2017-01-27 20:20

Dridex Returns With Windows UAC Bypass Method (Threatpost)
2017-01-27 18:56

Dridex banking malware returns with a new bypass technique that allows the malware to execute without triggering a Windows UAC alert to the user.

Microsoft Silently Fixes Kernel Bug That Led to Chrome Sandbox Bypass (Threatpost)
2016-11-30 21:10

Microsoft appears to have silently fixed a two-year-old bug in in Windows Kernel Object Manager that could have allowed for the bypass of privileges in Google's Chrome browser.

iOS 10 Passcode Bypass Can Access Photos, Contacts (Threatpost)
2016-11-17 19:38

A vulnerability in iOS 8, 9, 10, and even the most recent beta version, 10.2 beta 3, could allow an attacker to access photos and contacts on a locked iPhone.