Security News
Google said that more than half of pageloads on Chrome across platforms are encrypted; Android as the lone laggard, but trending upward.
Intermittent DDoS attacks affecting Internet connectivity nationwide in West African nation Liberia have ceased. One researcher says it’s a test for something else.
White hat hackers can hack cars, medical devices and home IoT devices without fear of running amiss of DMCA laws that prevent reverse engineering.
Two-factor authentication protecting Outlook Web Access and Office 365 portals can be bypassed-and the situation likely cannot be fixed, a researcher has disclosed.
Developers with GitLab fixed a critical vulnerability in the open source repository manager that could have allowed the theft of application files, tokens, or secrets.
Cisco Systems has issued two critical advisories addressing flaws in its 900 Series Routers and its Cisco Prime Home server.
Wix websites are vulnerable to reflective DOM cross-site scripting attack that could give attackers control of user’s websites.
Mitigations Available for PanelShock Vulnerabilities in Schneider Electric Magelis HMIs (Threatpost)
Schneider Electric has recommended a number of mitigations to ward off two critical vulnerabilities in its Magelis HMI products.
Critical vulnerabilities in MySQL and database servers MariaDB and PerconaDB can lead to arbitrary code execution, root privilege escalation, and server compromise.
Vulnerabilities in WeMo home automation devices can be used to attack the Android apps used to manage devices remotely.