HackerOne released a free model that assesses an organization’s readiness to accept outside vulnerability reports.
Browsing Category: Vulnerabilities
Apple watchOS2 arrived with a host of security patches, including fixes for more than a dozen code-execution bugs.
Adobe has released a Flash Player update that addresses 23 critical vulnerabilities in the software, many which can lead to code execution.
Exploit vendor Zerodium will host a month-long million-dollar bug bounty focused on Apple iOS 9.
As expected, Google formally announced its intent to move away from the stream cipher RC4 and the protocol SSLv3 this week, citing a long history of weaknesses in both.
Private keys used to sign D-Link software were included in open-source firmware published by the company.
Bugzilla users should upgrade to current versions after a privilege escalation vulnerability was reported and patched.
Schneider Electric has published new firmware for its StruxureWare Building Expert building automation system that patches a remotely exploitable vulnerability.
Google recently patched a lockscreen bypass in its Android-based Nexus phones that was discovered and reported by the University of Texas Information Security Office.
WordPress upgraded to 4.3.1, patching a pair of vulnerabilities in the core engine, including a cross-site scripting issue enabled by a vulnerability in shortcodes.