Security News

FreeRADIUS Update Resolves Authentication Bypass (Threatpost)
2017-05-30 18:39

Developers behind FreeRADIUS, an open source implementation of the networking protocol RADIUS, are encouraging users to update to address an authentication bypass found in the server.

Authentication Bypass Flaw Patched in FreeRADIUS (Security Week)
2017-05-30 16:14

A FreeRADIUS update released on Friday patches a potentially serious vulnerability that can be exploited to bypass authentication to the server. Developers have known about the flaw for months,...

Google Patches Nexus 6 Secure Boot Bypass (SecurityWeek)
2017-05-25 20:03

It's Insanely Easy to Bypass Samsung Galaxy S8 Iris Scanner with a Photo (The Hackers News)
2017-05-24 00:34

Samsung recently launched its new flagship smartphones, the Galaxy S8 and Galaxy S8 Plus, with both Facial and IRIS Recognition features, making it easier for users to unlock their smartphone and...

SOP Bypass in Microsoft Edge Leads to Credential Theft (SecurityWeek)
2017-05-12 01:18

SNMP Authentication Bypass Plagues Numerous Devices (SecurityWeek)
2017-04-28 06:48

Flaws Allowed Hackers to Bypass LastPass 2FA (SecurityWeek)
2017-04-21 08:33

Drupal Closes Access Bypass Vulnerability in Core Engine (Threatpost)
2017-04-20 13:57

Drupal released a point update for its core engine to patch a critical access bypass vulnerability.

Drupal Patches Critical Access Bypass Flaw (SecurityWeek)
2017-04-20 07:33

Fileless UAC Bypass Uses Windows Backup and Restore Utility (Threatpost)
2017-03-27 16:13

Researcher Matt Nelson disclosed another Windows UAC bypass, this one abusing the sdclt.exe backup and restore utility to execute a payload without triggering an alert.