Results 1 - 10 of about 102:

Michael Mimoso / Threatpost:
Mozilla accuses Chinese certificate authority WoSign of back-dating SHA-1 certificates and other violations, proposes no longer trusting WoSign certificates   —  Mozilla has accused a Chinese Certificate Authority of back-dating SHA-1 certificates to get around restrictions barring deprecated certs …
Sep 29, 2016, 6:40 PMIn context
Chris Brook / Threatpost:
Facebook brings osquery, its open source SQL-powered detection tool for monitoring OS processes and networks, to Windows   —  Facebook successfully ported its SQL-powered detection tool, osquery, to Windows this week, giving users a free and open source method to monitor networks and diagnose problems.
Sep 27, 2016, 11:55 PMIn context
Michael Mimoso / Threatpost:
St. Jude Medical files suit against MedSec and Muddy Waters, says MedSec made false claims about security of its products and conspired to manipulate stock   —  St. Jude Medical yesterday filed a lawsuit alleging that investment research firm Muddy Waters and healthcare security research company Med Sec …
Sep 8, 2016, 10:45 AMIn context
Tom Spring / Threatpost:
EFF sues US over Digital Millennium Copyright Act clause that restricts tinkering with systems that protect copyrighted materials like films, audio, and code   —  The Electronic Frontier Foundation filed a lawsuit Thursday against the U.S. Government over a provision within …
Jul 21, 2016, 6:35 PMIn context
Michael Mimoso / Threatpost:
Lenovo tells users to uninstall its Accelerator app, says it's vulnerable to MITM attacks after Duo Labs report on insecure bloatware in top PC vendor laptops   —  Lenovo has waved the white flag on a vulnerable component of its pre-installed software updater and recommends that users uninstall …
Jun 3, 2016, 2:35 PMIn context
Michael Mimoso / Threatpost:
Google rebrands monthly OTA patch release for Nexus devices as Android Security Bulletin, fixes two critical Mediaserver flaws   —  Google Patches More Trouble in Mediaserver  —  Google has re-branded its monthly patch release, bringing a new name and new scope to the newly renamed Android Security Bulletin.
May 3, 2016, 10:50 AMIn context
Chris Brook / Threatpost:
Researcher: Drupal update process insecure in all versions, enabling code execution and credential theft via man-in-the-middle attacks   —  All Drupal Versions Susceptible to Code Execution, Credential Theft Vulnerabilities  —  A number of issues exist in the content management system Drupal …
Jan 7, 2016, 6:30 AMIn context
Michael Mimoso / Threatpost:
Facebook and security researcher clash over disclosure best practices and compensation over Instagram bug and researcher's further systems probing   —  Facebook, Researcher Spar Over Instagram Vulnerabilities  —  A security researcher is in a bit of a scrum with Facebook over vulnerability disclosures …
Dec 18, 2015, 11:15 AMIn context
Michael Mimoso / Threatpost:
Juniper discovers three-year-old backdoor in its NetScreen enterprise firewalls that allows decrypting VPN traffic, admin access, says to patch immediately   —  Juniper Patches ScreenOS Backdoor  —  Juniper Networks today has released an emergency patch that removes what it's calling …
Dec 17, 2015, 7:00 PMIn context
Michael Mimoso / Threatpost:
Microsoft patches 71 flaws, two for Office and Windows kernel vulnerabilities currently under attack, warns of leaked Xbox Live certificate   —  Microsoft Patches 71 Flaws, Two Under Attack; Warns of Leaked XBox Live Cert  —  Forgive your local Windows admin if they're a little shy on holiday cheer in the coming days.
Dec 8, 2015, 9:20 PMIn context

Sponsor Posts

New beta of Microsoft Cognitive Toolkit to speed deep learning advances  —  Updated version of open source toolkit will aid advances in areas such as speech and image recognition and search.
Learn how to create an optimal payment experience [ON-DEMAND WEBINAR]  —  Boost checkout conversion with these tips from @unity3d and @Deezer.
How to handle the roller coaster ride of gathering insights and driving growth.  —  With the advent of the cloud and SaaS business models, small and medium-sized businesses can now leverage enterprise-grade technology without the enterprise-sized price tag.
The Case For Startups to Put CX at Their Core  —  Read why eero decided to prioritize and integrate its Customer Experience team - even before its launch
Uber is rewriting the mobile app playbook, yet again!  —  Some of the world's most popular mobile apps including Spotify, Flipboard and Supercell are following Uber's bold footsteps as they switch to in-app support!