Techmeme

Results 1 - 10 of about 96:

Chris Brook / Threatpost:
Researcher: Drupal update process insecure in all versions, enabling code execution and credential theft via man-in-the-middle attacks   —  All Drupal Versions Susceptible to Code Execution, Credential Theft Vulnerabilities  —  A number of issues exist in the content management system Drupal …
Jan 7, 2016, 6:30 AMIn context
Michael Mimoso / Threatpost:
Facebook and security researcher clash over disclosure best practices and compensation over Instagram bug and researcher's further systems probing   —  Facebook, Researcher Spar Over Instagram Vulnerabilities  —  A security researcher is in a bit of a scrum with Facebook over vulnerability disclosures …
Dec 18, 2015, 11:15 AMIn context
Michael Mimoso / Threatpost:
Juniper discovers three-year-old backdoor in its NetScreen enterprise firewalls that allows decrypting VPN traffic, admin access, says to patch immediately   —  Juniper Patches ScreenOS Backdoor  —  Juniper Networks today has released an emergency patch that removes what it's calling …
Dec 17, 2015, 7:00 PMIn context
Michael Mimoso / Threatpost:
Microsoft patches 71 flaws, two for Office and Windows kernel vulnerabilities currently under attack, warns of leaked Xbox Live certificate   —  Microsoft Patches 71 Flaws, Two Under Attack; Warns of Leaked XBox Live Cert  —  Forgive your local Windows admin if they're a little shy on holiday cheer in the coming days.
Dec 8, 2015, 9:20 PMIn context
Michael Mimoso / Threatpost:
Carnegie Mellon denies FBI paid for Tor-breaking research, implies subpoena may have been used   —  Carnegie Mellon says it was subpoenaed and not paid for research on breaking Tor  —  Carnegie Mellon University today implied in a statement that it was served with a subpoena to hand …
Nov 18, 2015, 5:05 PMIn context
Michael Mimoso / Threatpost:
Kemoge Android malware apps are unofficial ripoffs of popular titles spread via ad campaigns, seen in over 20 countries   —  Kemoge Android Adware Campaign Can Lead to Device Takeover  —  Google has been busy removing a number of apps from Google Play that are disguised as popular selections …
Oct 7, 2015, 4:15 PMIn context
Michael Mimoso / Threatpost:
D-Link Accidentally Leaks Private Code-Signing Keys   —  A simple mistake by networking gear manufacturer D-Link could have opened the door for costly damage.  —  Private keys used to sign software published by D-Link were found in the company's open source firmware packages.
Sep 18, 2015, 7:10 PMIn context
Michael Mimoso / Threatpost:
Android Stagefright Exploit Code Released to Public   —  Joshua Drake, the researcher who found the so-called Stagefright vulnerability in Android, today released exploit code to the public, which he hopes will be used to test systems' exposure to the flaw.  —  The move comes more than a month …
Sep 10, 2015, 8:45 AMIn context
Michael Mimoso / Threatpost:
Netflix releases Sleepy Puppy, an open-source tool to track XSS vulnerabilities across multiple apps   —  Netflix Sleepy Puppy Awakens XSS Vulnerabilities in Secondary Applications  —  Most automated scanning and security tools that ferret out cross-site scripting vulnerabilities don't do much analysis beyond the target application.
Sep 3, 2015, 9:40 AMIn context
Michael Mimoso / Threatpost:
Web hosts and businesses in the gaming industry vulnerable to new DDoS attack abusing RPC Portmapper warns Level 3   —  Reflection DDoS Attacks Abusing RPC Portmapper  —  A number web hosting providers and businesses in the gaming industry were last month guinea pigs for a new type of amplified DDoS attack.
Aug 20, 2015, 1:50 AMIn context

Sponsor Posts

Microsoft:
Microsoft hiring program opens more doors to people with autism  —  Meet Kyle Schwaneke, a promising young developer on the Xbox team and one of the first candidates in the program.
iQ by Intel:
3D Fashion Technology Brings Sci-Fi to the Runways  —  An Eagle Borg costume made of leatherette and plastic turned fashion designer Monica Vaverová into a 3D printing pioneer in the Czech Republic.
Zoho:
Tailor Zoho Projects to Fit Your Needs with Custom Fields  —  However deep or broad we make it, a one-size-fits-all project management solution can't address your needs as closely as one which is made for you.
Worldpay:
Converting free-to-paid  —  Through a survey of 7000 digital consumers globally, find out what prompts free users to convert to paying customers.
Igloo:
How Igloo helps keep Topgolf employees more engaged in their intranet and less reliant on email  —  An interview with Adrienne Chance, Director of Corporate Communications at Topgolf, a golf and entertainment experience.