Security News

Hey China, while you're in all our servers, you mind fixing this support ticket? IBM, HPE, Tata CS, Fujitsu, NTT and their customers pwned
2019-06-26 22:20

Oh no Xi didn't! Fresh details emerge on mega-hack Fresh details have emerged revealing just how deeply Chinese government hackers plundered HPE, IBM, DXC, Fujitsu, Tata, and others, stealing...

Epyc crypto flaw? AMD emits firmware fix for server processors after Googler smashes RAM encryption algorithms
2019-06-26 20:16

SEV code cracked to leak secret keys Microchip slinger AMD has issued a firmware patch to fix the encryption in its Secure Encrypted Virtualization technology (SEV), used to defend the memory of...

iPhone Apps Surreptitiously Communicated with Unknown Servers
2019-06-25 11:35

Long news article (alternate source) on iPhone privacy, specifically the enormous amount of data your apps are collecting without your knowledge. A lot of this happens in the middle of the night,...

Threat Stack expands its host-level support for Windows Server OS
2019-06-25 02:00

Threat Stack, the leader in cloud security and compliance for infrastructure and applications, announced it has expanded its host-level support to include Windows Server OS. With full support for...

Cisco DNA Center Critical Flaw Opens Access to Internal Servers
2019-06-20 15:12

Cisco has patched a slew of critical and high-severity flaws in its DNA Center and SD-WAN.

How to install an FTP server and secure it with TLS
2019-06-19 15:46

Gain more security with your open source FTP server with the help of OpenSSL and TLS.

Another Oracle WebLogic Server RCE under active exploitation
2019-06-19 08:34

Oracle has released an out-of-band fix for CVE-2019-2729, a critical deserialization vulnerability in a number of versions of Oracle WebLogic Server, and is urging customers to apply the security...

Parliament IT bods' fail sees server's naked OS exposed to world+dog
2019-06-18 12:01

Contents were cached by Google so we can all point and giggle Someone in the Parliamentary Digital Service managed to leave a server so completely exposed to the internet that Google indexed the...

Sad SACK: Linux PCs, servers, gadgets can be crashed by 'Ping of Death' network packets
2019-06-17 19:59

Don't let miscreants play hacky-SACK with your gear. Apply these mitigations, patches now if you can It is possible to crash network-facing Linux servers, PCs, smartphones and tablets, and...

Week in review: DevSecOps readiness, human bias in cybersecurity, Linux servers under attack
2019-06-16 14:50

Here’s an overview of some of last week’s most interesting news and articles: CISO do’s and don’ts for board reporting Security is no longer just a job for IT – it impacts all areas of a business,...