Etsy security engineer Kenneth Lee told Source Boston attendees about the online marketplace’s application security program, in particular its use of Feature Flags.
Browsing Tag: vulnerabilities
Google has patched a long list of serious security vulnerabilities in Chrome, including at least 19 highly rated flaws. The company patched a total of 31 vulnerabilities in Chrome 34 and paid out more than $28,000 in rewards to researchers who reported bugs to Google. Among the security fixes in Chrome 34 are patches for[...]
The maintainers of the OpenSSL library, one of the more widely deployed cryptographic libraries on the Web, have fixed a serious vulnerability that could have resulted in the revelation of 64 KB of memory to any client or server that was connected.
Facebook announced it will increase payouts for critical vulnerabilities on most of its properties as part of its bug bounty program.
Upset with the vulnerability handling process at Oracle, researchers yesterday disclosed over two dozen issues with the company’s Java Cloud Service platform.
Apple has updated its Safari browser, dropping a pile of security fixes that patch more than 25 vulnerabilities in the WebKit framework.
When the venerable Full Disclosure security mailing list shut down abruptly last month, many in the security community were surprised. But a lot of people, even those who had been members of the list for a long time, greeted the news with a shrug. Twitter, blogs and other outlets had obviated the need for mailing[...]
Cisco released patches for denial-of-service vulnerabilities in its IOS software used in networking gear such as routes and switches.
When the Full Disclosure mailing list closed down last week, many in the security community wondered what, if anything, would fill the void. As it turns out, Full Disclosure will fill that void.
Microsoft issued an advisory today warning of targeted attacks against a zero-day vulnerability in Microsoft Word. The exploits in the wild target Word 2010, but the Office software is vulnerable all the way back to Word 2003.