Security News

Private SSH Key, Weak Default Credentials Removed From ExaGrid Appliances (Threatpost)
2016-04-07 15:11

ExaGrid has removed public-private pairings and weak, hardcoded default credentials from its disk-backup appliances.

Popular WordPress plugin opens backdoor, steals user credentials (Help Net Security)
2016-03-07 20:07

If you are one of the 10,000+ users of the Custom Content Type Manager (CCTM) WordPress plugin, consider your site to be compromised and proceed to clean your installation up, Sucuri Security...

Cisco removes weak default static credentials from its switches (Help Net Security)
2016-03-03 19:39

Cisco has released on Wednesday a bucketload of software updates for a wide variety of its products, fixing vulnerabilities of different types and severity. But one is deemed critical: default...

Weak default credentials, command injection bug found in building operation software (Help Net Security)
2016-03-02 19:58

A vulnerability in servers programmed with Schneider Electric’s StruxureWare Building Operation software can be exploited by a low-skilled, remote attacker to gain access to the servers and make...

Identifying abuse of compromised credentials in real-time (Help Net Security)
2016-03-01 00:15

DB Networks announced at RSA Conference industry-first capabilities to non-intrusively identify compromised credentials in real-time by uniquely applying machine learning and behavioral analysis...