Security News

VMware Patches Critical Session-Handling Vulnerability (Threatpost)
2016-04-15 17:52

VMware fixed a critical vulnerability in one of its products this week that could’ve led to a man in a middle attack if exploited by an attacker.

Badlock Vulnerability Falls Flat Against Its Hype (Threatpost)
2016-04-12 18:30

The much anticipated Badlock vulnerability wasn’t in the SMB protocol after all, but in SAM and LSAD and exposed Windows machines to privilege escalation.

Microsoft plugs online services account hijacking vulnerability (Help Net Security)
2016-04-06 14:31

London-based security researcher and bug hunter Jack Whitton has discovered a serious cross-site request forgery flaw affecting Microsoft’s authentication system for online services. A successful...