Security News

ZDI offers hefty bounties for zero-days in popular web servers, CMSes
2018-07-25 15:33

The Trend Micro-backed Zero Day Initiative is asking bug hunters to look for zero-day RCE vulnerabilities in several open source server-side products and is ready to pay up to $200,000 for some of...

Want a $200k TIP? ZDI sticks bounties on bugs in big-name server code
2018-07-25 01:12

Pwn web publishing tools, HTTP servers on Linux and Windows and earn a nice bonus A bunch of new bug bounty rewards are up for grabs from the Zero Day Initiative, in a first-come, best-dressed...

Server Security: The Need for Deep Learning and Anti-Exploit
2018-07-17 14:48

Traditional server security controls were not built for ransomware, cryptojacking and other modern attacks. Paul Murray of Sophos discusses deep learning, anti-exploit technology and other key...

Trump's DNC 'Server' Conspiracy Rebutted
2018-07-17 12:48

President Continues to Dismiss Russian Hacking Attribution, Backs Putin's DenialsAsked in a press conference if he would denounce Russia for interfering in U.S. elections, President Trump...

US military manuals hawked on dark web after files left rattling in insecure FTP server
2018-07-11 14:58

Wow, so servicemen forget to change their default logins too Sensitive US Air Force documents have leaked onto the dark web as part of an attempted sale of drone manuals.…

How to install and use the Titan password manager on a Ubuntu Server 16.04 installation
2018-07-09 19:51

TechRepublic's Jack Wallen takes you through installing and using the Titan password manager on a Ubuntu Server 16.04 installation. The installation should work on most Linux distributions (with a...

Typing 'A' key 29 times lets you hack HPE iLO 4 servers
2018-07-06 17:36

Utilizing a cURL request and the string of letters, researcher obtained a cleartext password.

Things that make you go hmmm: Do crypto key servers violate GDPR?
2018-07-05 08:13

One does not simply 'remove' data from key servers Cryptographic key servers are in "direct violation" of the EU's General Data Protection Regulation, a software developer has claimed.…

Misconfiguration of Java web server component Jolokia puts orgs at risk
2018-06-25 15:52

You gotta shore it up before you put it to work, says researcher Misconfiguration of a commonly used Java web server component could create multiple risks, according to security researcher Mat Mannion.…