There’s a serious security flaw in some of Cisco’s wireless routers that could allow a remote attacker to take complete control of the router. The bug is in a number of the Cisco small business routers, as well as a wireless VPN firewall. Cisco has released patches to fix the vulnerability in its Wireless-N VPN[...]
Browsing Category: Web Security
Social networking site Meetup.com is finally back online today yet it warns the site could still face future outages following a series of sustained denial of service attacks (DDoS) over the weekend.
Google has fixed 19 security flaws in its Chrome browser, including more than a dozen high-risk bugs. The company paid out $3,500 in rewards to security researchers who reported flaws. Two of the high-risk vulnerabilities fixed in Chrome 33 are use-after-free flaws, one in SVG images and the other in speech recognition. There’s also a[...]
Oracle’s Demantra is fraught with vulnerabilities that could allow an attacker to extract sensitive information, carry out phishing attacks, and modify content within the application, among other attacks.
SAN FRANCISCO–The security of data being transmitted over the Web relies on a large number of moving parts, from the integrity of the machine sending the data, to the security of the browser, to the implementation of encryption, to the fragility of the certificate authority system. Experts have been spending the best part of the[...]
Starting a threat modeling system can seem daunting, but the good news is that there’s no one right way to do it, just the right way for a given organization.
After reading through stacks and stacks of Snowden documents, Schneier says that yes, the NSA is extremely capable and full of smart people but “they are not made of magic”.
A panel of some of the biggest names in cryptography said more conservatism and caution in the development and deployment of encryption is warranted.
The certificate-validation vulnerability that Apple patched in iOS yesterday also affected Mac OS X up to 10.9.1, the current version.
Security researchers did a limited assessment of the iOS and Android versions of WhatsApp and discovered a number of issues around the way the app uses SSL.