vulnerabilitiesVulnerable updates in Cisco enterprise software
How even high-end solutions for business can have “childish” bugs in their update delivery systems.
vulnerabilities
221 articles
The dangers of 15-year-old vulnerabilities
The developers of a run-of-the-mill Python module recently found out why old unpatched vulnerabilities can be dangerous.
Patches for 64 vulnerabilities in Microsoft products released
It’s time to update! Microsoft patches 64 vulnerabilities in a variety of products and components — from Windows and Office to Defender and Azure.
Weaponizing game code to attack a company
An unusual case of an attack executed by weaponizing legit video game code.
A Zoom vulnerability, and the war between the hackers and the developers
Takeaway from DEF CON 30: vulnerability in Zoom for macOS.
Retbleed attack, or Spectre strikes back
Using a recent study on hardware vulnerabilities in processors as an example, we contemplate the cost of security.
DogWalk and other vulnerabilities
Microsoft has released patches for more than 140 vulnerabilities, some of which need to be closed as soon as possible.
ChronicleILOVEYOU: the virus that loved everyone
We recall the story of the ILOVEYOU worm — one of the most infamous viruses from 22 years ago.
What’s Hertzbleed, and what’s so unique about it?
One of the most complex, yet easy to understand, infosec studies of recent times.
iOSHacking a powered-off iPhone: vulnerabilities never sleep
Can a device be hacked when switched off? Recent studies suggest so. Let’s see how this is even possible.
Follina: office documents as an entrance
New vulnerability CVE-2022-30190, aka Follina, allows exploitation of Windows Support Diagnostic Tool via MS Office files.
DHS recommends patching VMware, probably you should too
The Department of Homeland Security is urging US federal agencies to “patch or remove” a list of VMware products within five days. Probably you should do it too.
Actively exploited vulnerability in Windows
Time to update Windows! Microsoft has released patches for several dozen vulnerabilities, one of which cybercriminals are actively exploiting.
A bunch of vulnerabilities in Windows, one already exploited
Microsoft patches 128 vulnerabilities in a list of products, including Windows and its components.
Always update Safari on your iPhone
If you use an iPhone, it’s crucial to always install the Safari and WebKit updates, even if your browser of choice is Chrome, Firefox or something else. Here’s why.
Spring4Shell: critical vulnerability in Spring Java framework
Researchers found critical vulnerability in Spring, a popular Java framework. Here’s how it works, why it’s dangerous and how to protect from it.
Chrome10 high severity vulnerabilities in Google Chrome
The recent Google Chrome update patches 10 high severity vulnerabilities and a dozen of less critical bugs. Time to update your browser!
Update iOS, there is a dangerous vulnerability in WebKit
Dangerous vulnerability in WebKit (CVE-2022-22620) is believed to be actively exploited by hackers. Update your iOS devices as soon as possible!
Step-by-step instructions to update Google Chrome
How to update Google Chrome right when you really need to, and what to do if you run into problems.
Spectre vulnerability: 4 years after discovery
Does hardware vulnerabilities in CPU pose a practical threat to businesses?
Dangerous vulnerability in Dark Souls III videogame
Dangerous vulnerability was discovered in Dark Souls III videogame that can be used to gain control of a gamer’s computer.