Security News

US-CERT lists the 10 most-exploited security bugs and, yeah, it's mostly Microsoft holes people forgot to patch
2020-05-14 05:03

A list posted by US-CERT this week rattles off the 10 most oft-targeted security vulnerabilities during the past three years, and finds that, shock horror, for the most part, keeping up with patching will keep you safe. Microsoft ranks highly in the list because its software is widely used, and provides the most potential targets for hackers, though on the other hand, fixes have been available for these bugs for a long while: it doesn't have to be this way, people.

US-CERT warns of critical flaws in Medtronic equipment
2019-11-13 12:06

Medtronic's latest problem is in their Valleylab electrosurgical generators used by surgeons things like cauterisation during operations.

US-Cert alert! Thanks to a massive bug, VPN now stands for "Vigorously Pwned Nodes"
2019-04-12 21:00

Multiple providers leaving storage cookies up for grabs The US-Cert is raising alarms following the disclosure of a serious vulnerability in multiple VPN services.…

US CERT Warns of N. Korean 'Hoplight' Trojan
2019-04-12 15:18

Hidden Cobra, Also Known as Lazarus, Appears to Be Behind the MalwareU.S. CERT has issued a fresh warning about a newly discovered Trojan called Hoplight that is connected to a notorious APT group...

US-CERT warns of more North Korean malware
2018-06-18 03:02

'Typeframe' springs from the same den as 'Hidden Cobra' The United States Department of Homeland Security's Computer Emergency Response Team (US-CERT) has warned against another malware campaign...

US-CERT issues alert for Russian attacks targeting IoT devices
2018-04-19 10:25

Attorney and former CIA case officer Jack Rice explains how foreign actors could attack critical infrastructure, and how US intelligence agencies deploy a proportional response to cyber attacks.

Windows 10 Security Feature Broken, US-CERT Warns
2017-11-21 13:03

Entropy Alert: Non-Random ASLR Leaves Systems Open To Buffer Overflow AttacksRecent versions of Windows have a security problem: They're not random enough, US-CERT warns. The problem centers on...

US-CERT Warns of ASLR Implementation Flaw In Windows
2017-11-20 22:30

US-CERT is warning of a vulnerability in Microsoft’s implementation of Address Space Layout Randomization that affects Windows 8, Windows 8.1 and Windows 10.

US-CERT: North Korean Hackers Targeting Three Sectors
2017-11-15 19:03

Malware Takes Aim at Financial Services, Aerospace and Telecommunications IndustriesSince last year, North Korean hackers have been targeting businesses in the financial services, aerospace and...

US-CERT Warns of Crypto Bugs in IEEE Standard
2017-11-06 18:15

Weak cryptography in the IEEE P1735 electronics standard allow attackers to recover valuable intellectual property in plaintext from SoCs and integrated circuits.