Security News

In a coffee-shop scenario, attackers can hijack "secure" VPN sessions of those working remotely, injecting data into their TCP streams.

OpenVPN, WireGuard, IKEv2/IPSec also vulnerable to unmasking flaw, we're told A bug in the way Unix-flavored systems handle TCP connections could put VPN users at risk of having their encrypted...

A team of cybersecurity researchers has disclosed a new severe vulnerability affecting most Linux and Unix-like operating systems, including FreeBSD, OpenBSD, macOS, iOS, and Android, that could...

A vulnerability that can be exploited to determine if a user is connected to a VPN and hijack active TCP connections in a VPN tunnel has been found to affect various Linux and Unix operating...

You know what they say: Timing is... everything Trusted Platform Modules, specialized processors or firmware that protect the cryptographic keys used to secure operating systems, are not entirely...

A latest episode of the Naked Security podcast is out now!

Avast Says CCleaner Versions Are Malware-FreeAvast's CCleaner utility is popular - with attackers. For the second time in two years, the company says it believes CCleaner was the intended targeted...

Poorly secured opening in security blamed On Monday, security biz Avast said it believes some of its credentials were stolen and abused in an unsuccessful attempt to subvert CCleaner, a file...

Now if only they'd accept the Queen back again... The US National Security Agency (NSA) is warning admins to patch a set of months-old security bugs that have recently come under active attack.…

Not Just Patch or Perish, But Also Pay Attention, Security Experts WarnThe U.S. National Security Agency is the latest intelligence agency to warn that unpatched flaws in three vendors' VPN...