Intel will pay up to $250,000 to researchers who identify bugs more severe than 9.0 on the CVSS scale.
Browsing Author: Christopher Kanaracus
Avecto researchers say removing admin rights from users would mitigate many of the threats.
Researchers now believe attackers may have had prior access to networks and that malware was more sophisticated than originally believed.
One of the bugs could allow a successful attack simply by a user viewing an email in Outlook’s Preview pane.
It’s just the latest reported vulnerability for the secure messaging application.
The malware’s sole purpose was to take down systems, not steal data, Cisco Talos researchers say.
The attack could have been averted through a technique called subresource integrity, according to researcher Scott Helme.
Cisco has issued patches for the vulnerability, which could be up to seven years old.
The vulnerability also exposed login credentials for a massive national insurance claims database, Upguard says.
The move adds to Google’s efforts against malicious apps on the Play store.