Techmeme

Results 1 - 10 of about 97:

Michael Mimoso / Threatpost:
Google rebrands monthly OTA patch release for Nexus devices as Android Security Bulletin, fixes two critical Mediaserver flaws   —  Google Patches More Trouble in Mediaserver  —  Google has re-branded its monthly patch release, bringing a new name and new scope to the newly renamed Android Security Bulletin.
May 3, 2016, 10:50 AMIn context
Chris Brook / Threatpost:
Researcher: Drupal update process insecure in all versions, enabling code execution and credential theft via man-in-the-middle attacks   —  All Drupal Versions Susceptible to Code Execution, Credential Theft Vulnerabilities  —  A number of issues exist in the content management system Drupal …
Jan 7, 2016, 6:30 AMIn context
Michael Mimoso / Threatpost:
Facebook and security researcher clash over disclosure best practices and compensation over Instagram bug and researcher's further systems probing   —  Facebook, Researcher Spar Over Instagram Vulnerabilities  —  A security researcher is in a bit of a scrum with Facebook over vulnerability disclosures …
Dec 18, 2015, 11:15 AMIn context
Michael Mimoso / Threatpost:
Juniper discovers three-year-old backdoor in its NetScreen enterprise firewalls that allows decrypting VPN traffic, admin access, says to patch immediately   —  Juniper Patches ScreenOS Backdoor  —  Juniper Networks today has released an emergency patch that removes what it's calling …
Dec 17, 2015, 7:00 PMIn context
Michael Mimoso / Threatpost:
Microsoft patches 71 flaws, two for Office and Windows kernel vulnerabilities currently under attack, warns of leaked Xbox Live certificate   —  Microsoft Patches 71 Flaws, Two Under Attack; Warns of Leaked XBox Live Cert  —  Forgive your local Windows admin if they're a little shy on holiday cheer in the coming days.
Dec 8, 2015, 9:20 PMIn context
Michael Mimoso / Threatpost:
Carnegie Mellon denies FBI paid for Tor-breaking research, implies subpoena may have been used   —  Carnegie Mellon says it was subpoenaed and not paid for research on breaking Tor  —  Carnegie Mellon University today implied in a statement that it was served with a subpoena to hand …
Nov 18, 2015, 5:05 PMIn context
Michael Mimoso / Threatpost:
Kemoge Android malware apps are unofficial ripoffs of popular titles spread via ad campaigns, seen in over 20 countries   —  Kemoge Android Adware Campaign Can Lead to Device Takeover  —  Google has been busy removing a number of apps from Google Play that are disguised as popular selections …
Oct 7, 2015, 4:15 PMIn context
Michael Mimoso / Threatpost:
D-Link Accidentally Leaks Private Code-Signing Keys   —  A simple mistake by networking gear manufacturer D-Link could have opened the door for costly damage.  —  Private keys used to sign software published by D-Link were found in the company's open source firmware packages.
Sep 18, 2015, 7:10 PMIn context
Michael Mimoso / Threatpost:
Android Stagefright Exploit Code Released to Public   —  Joshua Drake, the researcher who found the so-called Stagefright vulnerability in Android, today released exploit code to the public, which he hopes will be used to test systems' exposure to the flaw.  —  The move comes more than a month …
Sep 10, 2015, 8:45 AMIn context
Michael Mimoso / Threatpost:
Netflix releases Sleepy Puppy, an open-source tool to track XSS vulnerabilities across multiple apps   —  Netflix Sleepy Puppy Awakens XSS Vulnerabilities in Secondary Applications  —  Most automated scanning and security tools that ferret out cross-site scripting vulnerabilities don't do much analysis beyond the target application.
Sep 3, 2015, 9:40 AMIn context

Sponsor Posts

Microsoft:
Get all the Microsoft news from Hannover Messe  —  Satya Nadella kicked off Microsoft's participation at the world's leading trade fair for industrial technology.
Zoho:
Aesthetic yet informative dashboards from Zoho Reports  —  This is the third instalment which covers another collection of interesting public dashboards from our customers.  Hope you'd have gone through …
Worldpay:
So your users are subscribing...  What are the next steps to maximize revenue?  Read these best practices.
Sync:
Moving many MBs to many devices?  Check out the new BitTorrent Sync IT  —  Sync IT introduces a new protocol dedicated to optimizing transfer speeds over WAN, satellite, or mobile networks.