The maintainers of the Drupal content management system are warning users that any site owners who haven’t patched a critical vulnerability in Drupal Core disclosed earlier this month should consider their sites to be compromised.
Browsing Author: Dennis Fisher
Microsoft is planning to disable support for the weak SSLv3 protocol in Internet Explorer at some undetermined point in the future.
The Dyreza Trojan is exploiting the recently disclosed CVE-2014-4114 vulnerability in Windows that was first used by the Sandworm attackers.
The issue of cyberespionage is a thorny one, both technically and politically speaking, but some experts say there may not actually be a solution to the problem.
The lack of a central authority for government network security is not a new problem but it’s not necessarily a bad thing, if everyone is doing their jobs, some experts say.
The United States government and private sector are unprepared for a major cyber attack on the country’s critical infrastructure, a former Congressman said.
A security researcher has identified a Tor exit node that was actively patching binaries users download, adding malware to the files dynamically. The discovery, experts say, highlights the danger of trusting files downloaded from unknown sources and the potential for attackers to abuse the trust users have in Tor and similar services. Josh Pitts of Leviathan[...]
There is a severe remote code execution vulnerability in a number of Cisco’s security appliances, a bug that was first disclosed nearly three years ago.
Attackers are using a zero day vulnerability in nearly all supported versions of Windows in a series of targeted attacks.
The FTC has hired Ashkan Soltani, a highly regarded and respected technologist and privacy researcher, as its chief technologist.