Techmeme

Results 1 - 10 of about 97:

Michael Mimoso / Threatpost:
Google rebrands monthly OTA patch release for Nexus devices as Android Security Bulletin, fixes two critical Mediaserver flaws   —  Google Patches More Trouble in Mediaserver  —  Google has re-branded its monthly patch release, bringing a new name and new scope to the newly renamed Android Security Bulletin.
May 3, 2016, 10:50 AMIn context
Chris Brook / Threatpost:
Researcher: Drupal update process insecure in all versions, enabling code execution and credential theft via man-in-the-middle attacks   —  All Drupal Versions Susceptible to Code Execution, Credential Theft Vulnerabilities  —  A number of issues exist in the content management system Drupal …
Jan 7, 2016, 6:30 AMIn context
Michael Mimoso / Threatpost:
Facebook and security researcher clash over disclosure best practices and compensation over Instagram bug and researcher's further systems probing   —  Facebook, Researcher Spar Over Instagram Vulnerabilities  —  A security researcher is in a bit of a scrum with Facebook over vulnerability disclosures …
Dec 18, 2015, 11:15 AMIn context
Michael Mimoso / Threatpost:
Juniper discovers three-year-old backdoor in its NetScreen enterprise firewalls that allows decrypting VPN traffic, admin access, says to patch immediately   —  Juniper Patches ScreenOS Backdoor  —  Juniper Networks today has released an emergency patch that removes what it's calling …
Dec 17, 2015, 7:00 PMIn context
Michael Mimoso / Threatpost:
Microsoft patches 71 flaws, two for Office and Windows kernel vulnerabilities currently under attack, warns of leaked Xbox Live certificate   —  Microsoft Patches 71 Flaws, Two Under Attack; Warns of Leaked XBox Live Cert  —  Forgive your local Windows admin if they're a little shy on holiday cheer in the coming days.
Dec 8, 2015, 9:20 PMIn context
Michael Mimoso / Threatpost:
Carnegie Mellon denies FBI paid for Tor-breaking research, implies subpoena may have been used   —  Carnegie Mellon says it was subpoenaed and not paid for research on breaking Tor  —  Carnegie Mellon University today implied in a statement that it was served with a subpoena to hand …
Nov 18, 2015, 5:05 PMIn context
Michael Mimoso / Threatpost:
Kemoge Android malware apps are unofficial ripoffs of popular titles spread via ad campaigns, seen in over 20 countries   —  Kemoge Android Adware Campaign Can Lead to Device Takeover  —  Google has been busy removing a number of apps from Google Play that are disguised as popular selections …
Oct 7, 2015, 4:15 PMIn context
Michael Mimoso / Threatpost:
D-Link Accidentally Leaks Private Code-Signing Keys   —  A simple mistake by networking gear manufacturer D-Link could have opened the door for costly damage.  —  Private keys used to sign software published by D-Link were found in the company's open source firmware packages.
Sep 18, 2015, 7:10 PMIn context
Michael Mimoso / Threatpost:
Android Stagefright Exploit Code Released to Public   —  Joshua Drake, the researcher who found the so-called Stagefright vulnerability in Android, today released exploit code to the public, which he hopes will be used to test systems' exposure to the flaw.  —  The move comes more than a month …
Sep 10, 2015, 8:45 AMIn context
Michael Mimoso / Threatpost:
Netflix releases Sleepy Puppy, an open-source tool to track XSS vulnerabilities across multiple apps   —  Netflix Sleepy Puppy Awakens XSS Vulnerabilities in Secondary Applications  —  Most automated scanning and security tools that ferret out cross-site scripting vulnerabilities don't do much analysis beyond the target application.
Sep 3, 2015, 9:40 AMIn context

Sponsor Posts

Microsoft:
Building global connectivity, one community at a time  —  With the Affordable Access Initiative grants, 12 announced today, we're partnering with local entrepreneurs across five continents.
Zoho:
When it comes to your new hire, roll out the red carpet.  —  As a recruiter, your days are so jumbled with a medley of meetings, resumes, and interviews that it's easy to forget basic recruiter doctrine: when you hire someone, you change a life.
Worldpay:
Digital subscriptions have taken off!  —  Convert more subscribers and process more payments with these best practices.
Uber Developers:
Connect riders with your app with Uber Trip Experiences  —  What if developers could also offer users of their apps new ways to enjoy themselves — or get stuff done — while they're on the road?