Jury Finds Ex-Twitter Worker Spied for Saudi Royals
read more
Continue Reading
Category: NEWS & INDUSTRY
Exploit Code Published for Critical VMware Security Flaw
The race to mitigate a gaping authentication bypass vulnerability in VMware Workspace ONE Access, Identity Manager and vRealize Automation products just got a lot more urgent. read more
Continue ReadingAlready Exploited Zero-Day Headlines Microsoft Patch Tuesday
Microsoft on Tuesday released a critical-severity bulletin to warn of a newly discovered zero-day attack exploiting a remote code execution vulnerability in its flagship Windows operating system. read more
Continue ReadingÆPIC Leak: Architectural Bug in Intel CPUs Exposes Protected Data
A group of researchers from several universities and companies has disclosed a new Intel CPU attack method that could allow an attacker to obtain potentially sensitive information. read more
Continue ReadingAMD Processors Expose Sensitive Data to New ‘SQUIP’ Attack
A group of academic researchers on Tuesday published a paper describing the first side-channel attack targeting the scheduler queues of modern processors. read more
Continue ReadingAdobe Patch Tuesday: Code Execution Flaws in Acrobat, Reader
Software maker Adobe has released patches for at least 25 documented security vulnerabilities that expose Windows and macOS users to malicious hacker attacks. The most urgent fix affects the ubiquitous Adobe Acrobat and Reader software used to create, view and manage PDF files across platforms. read more
Continue ReadingPrivya Emerges From Stealth With Data Privacy Code Scanning Platform
Privya emerged from stealth mode on Tuesday with a data privacy-focused code scanning platform and $6 million in seed funding. read more
Continue ReadingMicrosoft Publishes Office Symbols to Improve Bug Hunting
Microsoft Office has started publishing Office symbols for Windows in an effort to help bug hunters find and report security issues. Symbols are pieces of information used during debugging, and are contained within Symbol files, which are created by the compiler during application build. read more
Continue ReadingICS Patch Tuesday: Siemens, Schneider Electric Fix Only 11 Vulnerabilities
Industrial giants Siemens and Schneider Electric have addressed less than a dozen vulnerabilities in their August 2022 Patch Tuesday advisories, far fewer than in most of the previous months. read more
Continue ReadingBlack Hat 2022: Ten Presentations Worth Your Time and Attention
LAS VEGAS – The security industry makes its annual pilgrimage to the hot Sonoran desert this week for skills training, hacking demos, research presentations and cybersecurity vendors showing off shiny new products. read more
Continue Reading