Amazon announced the release of Inspector, an application-scanning tool for apps running in EC2 instances that looks for compliance levels and vulnerabilities introduced during development.
Browsing Category: Vulnerabilities
An adware campaign called Kemoge not only aggressively serves ads to Android devices, but also can open a backdoor and install malicious components leading to remote takeover.
Citing vendor pressure, a researcher pulled a talk at HITB GSEC Singapore on the security of IP-enabled surveillance cameras.
Google’s latest monthly over-the-air update for its Nexus Android devices include patches for the most recent vulnerabilities in Stagefright.
The popular Jetpack WordPress plugin was updated this week in order to patch a critical stored cross-site scripting vulnerability.
Apple pushed out its latest operating system, El Capitan, yesterday, and while it boasts many security fixes, the update fails to address the outstanding vulnerability in Gatekeeper that came to light this week.
Researchers at Zimperium have reported two new Stagefright vulnerabilities affecting one billion Android devices.
Unsupported versions of Honeywell distributed control system software are vulnerable to publicly available remote exploits.
Researcher Patrick Wardle will demonstrate a Mac OS X Gatekeeper bypass that exploits a weakness in the Apple OS that allows signed apps to execute malicious code.
SAP patched a dozen holes in its in-memory management system HANA that could have led to SQL injections, cross-site scripting (XSS) errors, and memory corruption vulnerabilities.