Apple has issued a series of bulletins for its Safari browser fixing various security vulnerabilities in its WebKit rendering engine.
IOActive researchers disclosed details on three patched vulnerabilities in Lenovo’s System Update mechanism.
Aletter has been sent to members of Congress by a long list of privacy, civil liberties, and human rights organizations asking the legislators to oppose the proposed USA Freedom Act, which would extend Section 215.
Microsoft’s introduction of Windows Update for Business puts an end to Patch Tuesday security updates as we know them.
More than five percent of all unique IP addresses accessing Google sites included some kind of ad injector software, and there are more than 50,000 of those injector browser extensions in use today, according to new research from Google.
Hospira’s Lifecare PCA3 Drug Infusion pumps are susceptible to multiple remotely exploitable vulnerabilities that could not only brick the device but allow an attacker to run commands and put lives in jeopardy.
Experts are concerned that Microsoft’s new Local Administrator Password Solution only partially addresses the problem of identical passwords on computers in a domain.
Buffer and integer overflow vulnerabilities have been patched in the ICU Project ICU4C library, used in hundreds of open source and enterprise software packages.
The idea of needing to disable a computer quickly as the police–or another potential adversary–comes through the door typically has been the concern of criminals. But in today’s climate activists, journalists, and others may find themselves wanting to make their laptops unusable in short order, and that’s where usbkill comes in.
Cybercriminals are using the Angler exploit kit to infect users with the Bedep Trojan, which then uses their computer resources to perform click-fraud and artificially inflate video views.