Chaouki Bekrar, the founder of VUPEN, has announced a new zero-day acquisition firm Zerodium.
Latest posts
Stakeholders Argue Against Restrictive Wassennaar Proposal
Categories: Government, Vulnerabilities, Web Security
The commenting period regarding the Wassenaar Arrangement expired on Monday but the echo chamber around the largely maligned proposal continues to reverberate.
Fiat Chrysler Recalls 1.4 Million Cars After Software Bug is Revealed
Categories: Hacks, Mobile Security, Vulnerabilities
A few days after issuing a patch and reassuring owners that the attack that shut down the transmission and other systems remotely on a Jeep was not a huge risk, Fiat Chrysler has decided to recall nearly 1.5 million vehicles as a result of the bug exposed in the research. The recall is the result of[…]
Several Critical Flaws Patched in Drupal Module
Categories: Vulnerabilities, Web Security
There are several critical vulnerabilities in a middleware layer used in Drupal, including both cross-site scripting and cross-site request forgery bugs, that can be exploited remotely. The vulnerabilities are in the Open Semantic Framework, which is a third-party project and not part of the Drupal Core. The framework is used to allow “structured data (RDF)[…]
WordPress Patches Critical XSS Vulnerability in All Builds
Categories: Vulnerabilities, Web Security
WordPress rolled out a new version of its content management system this morning that addresses a nasty cross-site scripting (XSS) vulnerability that could ultimately lead to site compromise.
