Browsing Tag: vulnerabilities

viber

Vulnerability in Viber Allows Intercept of Images, Videos

UPDATE – Viber, a messaging and VoIP application similar to WhatsApp, is in the middle of patching a vulnerability that could allow an attacker to view sensitive information shared between users like images, videos and location information.

Read more...

apache_dos

Apache Warns of Faulty Zero Day Patch for Struts

UPDATE – The Apache Software Foundation will re-issue at patch for a ClassLoader manipulation zero-day vulnerability in Struts. The fix is expected to be ready within 72 hours; a workaround is available.

Read more...

Oracle Gives Heartbleed Update, Patches 14 Products

Oracle Gives Heartbleed Update, Patches 14 Products

Amidst all of the fallout related to Heartbleed, Oracle is doing its best to keep users apprised of its efforts to patch any and all software that may be vulnerable to the OpenSSL issue.

Read more...

shutterstock_142777909

Crypto Examination Awaits in Phase Two of TrueCrypt Audit

A cryptanalysis of TrueCrypt, the second half of an audit of the open source encryption software, will involve a small team of experts who will manually audit the code.

Read more...

shutterstock_45001975

Programming Language Security Examined

Web application security begins with the developer’s comfort level and familiarity with a programming language. WhiteHat Security’s latest report examines the security of six top languages.

Read more...

Difficulty of Detecting OpenSSL Heartbleed Attacks Adds to Problem

Heartbleed Saga Escalates With Real Attacks, Stolen Private Keys

Categories: Vulnerabilities

The Heartbleed story advanced over the weekend with word of researchers exploiting the OpenSSL flaw to steal private SSL keys, and the loss of data on websites in the U.K. and Canada.

Read more...