Security News

CISA Pushing U.S. Agencies to Adopt Vulnerability Disclosure Policies
2019-12-02 16:46

A newly proposed CISA directive would require all U.S. agencies to develop and implement vulnerability disclosure processes for their internet connected systems.

DHS Mandates Federal Agencies to Run Vulnerability Disclosure Policy
2019-11-27 21:34

The DHS is requiring all federal agencies to develop a vulnerability disclosure policy. The goal is that people who discover vulnerabilities in government systems have a mechanism for reporting...

How the Linux kernel balances the risks of public bug disclosure
2019-11-15 13:27

A serious Wi-Fi flaw shows how Linux handles security in plain sight.

Intel Warns of Critical Info-Disclosure Bug in Security Engine
2019-11-12 19:07

The issue is in an Intel chip used for remote management.

Former BAE Systems contractor charged with 'damaging disclosure' of UK defence secrets
2019-10-10 09:01

49-year-old to appear at the Old Bailey next month A former BAE Systems defence contractor has appeared in court accused of leaking "highly sensitive" secrets to foreign governments.…

How to handle the public disclosure of bugs and security vulnerabilities
2019-09-19 13:46

A full 90% of security professionals say yes, according to a poll conducted by 451 Research and commissioned by security testing company Veracode.

Facebook Patches "Memory Disclosure Using JPEG Images" Flaws in HHVM Servers
2019-09-09 08:18

Facebook has patched two high-severity vulnerabilities in its server application that could have allowed remote attackers to unauthorisedly obtain sensitive information or cause a denial of...

HHS Proposes Changes to Substance Abuse Data Disclosures
2019-08-27 16:03

Do the Proposals Go Too Far, or Not Far Enough?The Department of Health and Human Services has issued proposed changes to privacy rules related to the sharing of patient records created by...

News Wrap: Linux Utility Backdoor, Steam Zero Day Disclosure Drama
2019-08-23 16:38

From a backdoor placed in the Webmin utility to vulnerability disclosure drama around zero-days in Valve's Steam gaming clients, Threatpost breaks down this week's top stories.

Intel NUC Firmware Open to Privilege Escalation, DoS and Information Disclosure
2019-06-12 13:25

Intel has patched seven high-severity vulnerabilities in its mini PC NUC kit firmware.