Security News

End the air gapping myth in critical infrastructure security (Help Net Security)
2016-12-14 13:30

In an environment where we’re seeing increasing demand for connectivity between operational technology (OT) and IT, security teams have to dispel the air gapping myth to acknowledge that IT...

Netgear Routers Remain Exposed to Critical Flaw (Threatpost)
2016-12-12 19:30

Netgear has confirmed a critical vulnerability in its Nighthawk routers that expose devices to command injection attacks. A public exploit is available.

Critical flaw opens Netgear routers to hijacking (Help Net Security)
2016-12-12 15:16

Several Netgear router models can be easily hijacked by remote, unauthenticated attackers, CERT/CC has warned on Friday. The vulnerability that allows this takeover can be exploited by simply...

Critical Vulnerability Patched in Roundcube Webmail (Threatpost)
2016-12-07 15:00

Open source webmail provider Roundcube was patched against a vulnerability that could be trivially exploited to run code on servers or access email accounts.

Drupal Fixes ‘Moderately Critical’ Vulnerabilities in Core Engine (Threatpost)
2016-11-18 18:56

Drupal fixed a handful of issues in version 7 and 8 of the content management system core engine that could have led to cache poisoning, social engineering attacks, and a denial of service condition.

Critical Linux bug opens systems to compromise (Help Net Security)
2016-11-15 20:30

Researchers from the Polytechnic University of Valencia have discovered a critical flaw that can allow attackers – both local and remote – to obtain root shell on affected Linux systems. So far,...

MS16-129 - Critical: Cumulative Security Update for Microsoft Edge (3199057) - Version: 1.0 (Microsoft)
2016-11-08 18:28

Google Patches 23 Critical Vulnerabilities in Android (SecurityWeek)
2016-11-08 13:43

Fix for critical Android rooting bug is a no-show in November patch release (ArsTechnica)
2016-11-08 05:43

Critical Privilege Escalation Flaws Found in MySQL (SecurityWeek)
2016-11-07 12:58