Security News

Entropy Alert: Non-Random ASLR Leaves Systems Open To Buffer Overflow AttacksRecent versions of Windows have a security problem: They're not random enough, US-CERT warns. The problem centers on...

US-CERT is warning of a vulnerability in Microsoft’s implementation of Address Space Layout Randomization that affects Windows 8, Windows 8.1 and Windows 10.

Malware Takes Aim at Financial Services, Aerospace and Telecommunications IndustriesSince last year, North Korean hackers have been targeting businesses in the financial services, aerospace and...

Weak cryptography in the IEEE P1735 electronics standard allow attackers to recover valuable intellectual property in plaintext from SoCs and integrated circuits.

Google Will Slowly Start Pulling the Rug From Under Symantec's Digital CertificatesA major operation to cleanse websites of digital certificates created under questionable circumstances is...

Google Will Slowly Start Pulling the Rug From Under Symantec's Digital CertificatesA major operation to cleanse websites of digital certificates created under questionable circumstances is...

The United States Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) issued an alert on Friday to warn relevant industries about a vulnerability affecting the Controller Area...

Citing “certificate misissuance,” Google to expire all certs from offenders by September.

Leading certificate authority Let’s Encrypt is facing criticism that its rapid growth and eagerness to encrypt internet communications is happening at a cost.

The assessments conducted by the U.S. Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) in 2016 showed that inadequate boundary protection has remained the most prevalent...