Uber announced that attackers had compromised databases containing current and former driver partner names and license numbers.
Latest posts
Signal 2.0 Brings Encrypted Messaging to iPhone
Categories: Apple, Cryptography, Mobile Security
Signal 2.0 is available from Open WhisperSystems, and brings encrypted messaging to the iPhone.
D-Link Routers Haunted by Remote Command Injection Bug
Categories: Vulnerabilities, Web Security
Some D-Link routers contain a vulnerability that leaves them open to remote attacks that can give an attacker root access, allow DNS hijacking and other attacks. The vulnerability affects affects a number of D-Link’s home routers and the key details of the flaw have been made public by one of the researchers who discovered it.[…]
Older Keen Team Use-After-Free IE Exploit Added to Angler Exploit Kit
Categories: Malware, Microsoft, Vulnerabilities, Web Security
Attackers behind one of the more popular exploit kits, Angler, have added a tweaked version of an exploit from last fall, a use after free vulnerability in Microsoft’s Internet Explorer browser.
Mozilla Pushes Hot Fix to Remove Superfish Cert From Firefox
Categories: Cryptography, Privacy, Web Security
Mozilla has issued a hot fix for Firefox that removes the Superfish root certificate from the browser’s trusted root store. The patch only removes the certificate if the Superfish software has been removed from the machine already, however. The Superfish adware performs SSL interception–essentially running man-in-the-middle attacks on connections to secure sites–in the name of[…]
