Security News

An exploit allows attackers to remotely overwrite archive files with their own content, and from there pivot to achieving remote command execution on the machine.

Expert Says Virtual Currency Systems Leak Useful Data To Track CriminalsExperts have long warned that bitcoin is not as private as it appears. The very design of bitcoin, as well as some other...

FireEye has released GeoLogonalyzer, an open source tool that can help organizations detect malicious logins based on geolocation and other data. Many organizations need to allow their employees...

The number of open source components in the codebase of proprietary applications keeps rising and with it the risk of those apps being compromised by attackers leveraging vulnerabilities in them,...

Open source vulnerabilities will often get disclosed earlier than those in managed software, but its up to IT to apply the patches.

Open source components have been increasingly used by developers, but failure to patch vulnerabilities in this type of software can pose serious risks. read more

The idea is to use trusted execution environments to build trust across various cloud-related use cases, including 5G, virtual network functions (VNFs), blockchain and more.

Microsoft informed users on Wednesday that an update for the Windows Host Compute Service Shim library patches a critical remote code execution vulnerability. read more

Team collaboration solutions provider Slack last week announced that one of the secure development lifecycle (SDL) tools used internally by the company has been released as open source. read more

IBM researchers have created the Adversarial Robustness Toolbox, an open-source library to help researchers improve the defenses of real-world AI systems. Attacks against neural networks have...