DHS CERT published an alert prompted by a paper delivered at USENIX regarding the security of browser cookies.
Browsing Category: Vulnerabilities
Cisco pushed out its usual semiannual round of patches on Wednesday for IOS, the software the company uses for most of its routers and switches.
Researchers found a weakness in XcodeGhost that puts it at risk for man-in-the-middle attacks.
A researcher at Bromium is expected at DerbyCon to disclose a memory corruption mitigation bypass of Microsoft Control Flow Guard.
HackerOne released a free model that assesses an organization’s readiness to accept outside vulnerability reports.
Apple watchOS2 arrived with a host of security patches, including fixes for more than a dozen code-execution bugs.
Adobe has released a Flash Player update that addresses 23 critical vulnerabilities in the software, many which can lead to code execution.
Exploit vendor Zerodium will host a month-long million-dollar bug bounty focused on Apple iOS 9.
As expected, Google formally announced its intent to move away from the stream cipher RC4 and the protocol SSLv3 this week, citing a long history of weaknesses in both.
Private keys used to sign D-Link software were included in open-source firmware published by the company.