Dennis Fisher and Mike Mimoso talk about the news from the CanSecWest conference, the drama and melodrama at Pwn2Own and the bad year that RNGs have had.
Browsing Tag: vulnerabilities
Keen Team, a group of Chinese hackers, took down Apple Safari and Adobe Flash at the annual Pwn2Own contest.
Browser exploits continue to make news at Pwn2Own, but one that failed stood out in particular.
The Pwn4Fun prelude to the Pwn2Own contest paid out more than $80,000 to the Red Cross of Canada, but critics wondered how long HP and Google sat on the zero-day vulnerabilities used in the contest.
The Early Random Pseudo-Random Number Generator in Apple iOS 7 returns predictable outcomes threatening kernel exploit mitigations native to the mobile operating system.
Exploit broker Vupen won four cash prizes for zero-day exploits of Internet Explorer 11, Firefox, Adobe Reader and Flash at the Pwn2Own contest.
The GnuTLS bug is being joined at the hip to the recent Apple goto fail bug, but experts hoping to stem off confusion say the two vulnerabilities are different despite having the same consequences.
Security researchers have been investing in developing exploits for Microsoft’s Enhanced Mitigation Experience Toolkit (EMET), but hints are surfacing that hackers are taking notice too.
A critical vulnerability in GnuTLS, a popular open source crypto library, puts hundreds of software packages including popular Linux distribution at risk.
More than 300,000 home and small office routers were compromised in large-scale attacks that altered DNS configurations and redirected traffic to attacker-controlled sites.