Browsing Tag: vulnerabilities

microsoft sign

Microsoft Will Resume Email Security Notifications This Week

Microsoft announced this afternoon that it would resume sending security email notifications, reversing course on a decision it had made to suspend the practice.

Read more...

paypal_2FA

Flaw Lets Attackers Bypass PayPal Two-Factor Authentication

There’s a vulnerability in the way that PayPal handles certain requests from mobile clients that can allow an attacker to bypass the two-factor authentication mechanism for the service and transfer money from a victim’s account to any recipient he chooses.

Read more...

shutterstock_10486906

Dramatic Drop in Vulnerable NTP Servers Used in DDoS Attacks

95 percent of vulnerable NTP servers leveraged in massive DDoS attacks earlier this year have been patched, but the remaining servers still have experts concerned.

Read more...

uscis

Flaws Found in USCIS RFID Card Production System

The system that’s used to produce RFID-enabled identification cards–including permanent resident IDs–by the United States Citizenship and Immigration Service has a number of serious security issues, according to a new report from the Office of the Inspector General at DHS. Among the issues the OIG found is that nearly all of the workstations in the system[...]

Read more...

5657989708_2428172a75_b

Belkin Patches Directory Traversal Bug in Wireless Router

There’s a serious security vulnerability in the Belkin N150 wireless router that can enable a remote, unauthenticated attacker to read any system file on a vulnerable router. The bug is a directory traversal vulnerability and the CERT/CC advisory says that all versions of the router that are running firmware up to and including firmware version[...]

Read more...