Security News

A remote, unauthenticated attacker could execute arbitrary commands on systems with the privileges of the Ghostscript code.

Flaw in House Larry's flagship product allows "complete compromise" of servers Oracle is advising customers to update their database software following the discovery and disclosure of a critical...

A flaw in Cortana allowed researchers to take over a locked Windows machine and execute arbitrary code.

A file deletion vulnerability that remains unpatched 7 months after being reported allows for the complete takeover of WordPress sites and for arbitrary code execution. read more

The Roku streaming video device and the Sonos Wi-Fi speakers suffer from the same DNS rebinding flaw reported in Google Home and Chromecast devices earlier this week.

A misconfigured server operated by CalAmp, a company offering the backend for a broad range of well-known car alarm systems, provided anyone with access to data and even allowed for account and...

Distil Networks released The 2018 Anatomy of Account Takeover Attacks Report, based on data from 600 domains that include login pages. The study revealed that all monitored login pages were hit...

Exploitation can result in hackers gaining access to full browsing histories and all of the user's internet activities.