Security News

Microsoft Silently Fixes Kernel Bug That Led to Chrome Sandbox Bypass (Threatpost)
2016-11-30 21:10

Microsoft appears to have silently fixed a two-year-old bug in in Windows Kernel Object Manager that could have allowed for the bypass of privileges in Google's Chrome browser.

iOS 10 Passcode Bypass Can Access Photos, Contacts (Threatpost)
2016-11-17 19:38

A vulnerability in iOS 8, 9, 10, and even the most recent beta version, 10.2 beta 3, could allow an attacker to access photos and contacts on a locked iPhone.

Outlook Web Access Two-Factor Authentication Bypass Exists (Threatpost)
2016-11-03 19:15

Two-factor authentication protecting Outlook Web Access and Office 365 portals can be bypassed-and the situation likely cannot be fixed, a researcher has disclosed.

PayPal patches bone-headed two factor authentication bypass (The Register)
2016-10-27 07:12

VMware Flaws Allow Security Bypass on Mac OS X (SecurityWeek)
2016-10-26 14:12

Researchers bypass ASLR by exploiting flaw in Intel chip (Help Net Security)
2016-10-19 22:03

Researchers have found a design flaw in the branch predictor, a component of Intel’s Haswell processor, and have exploited it to bypass ASLR (Address Space Layout Randomization). What is ASLR?...

Researchers Bypass ASLR via Hardware Vulnerability (SecurityWeek)
2016-10-19 07:36

SAP fixes gaping authentication bypass flaw after 3 YEARS (The Register)
2016-10-12 14:08

Mobile App Collusion Can Bypass Native Android Security (Threatpost)
2016-10-06 14:00

At Virus Bulletin, researchers explain how Android mobile applications can collude to share data and synchronize payload execution.

Researchers Leverage RKP Module to Bypass Samsung KNOX (SecurityWeek)
2016-10-04 18:22