Joomla released a new version of its CMS Thursday, 3,4,5, that addresses a critical SQL injection vulnerability that could have let attackers gain access to data in the backend of any site running the platform.
Browsing Category: Web Security
Researchers at Boston University have published new attacks against the Network Time Protocol (NTP) that jeopardize the security of numerous online activities.
Researchers at Security Explorations say a change implemented by Google to the Java security model as its implemented in the Google App Engine leads to sandbox escapes.
Oracle patched 154 vulnerabilities in 54 different products as part of its regularly scheduled Critical Patch Update Tuesday.
Let’s Encrypt hit a milestone last night when it received the cross-signatures necessary to render its beta-and free-certificates trusted by all browsers.
Facebook will inform users when it believes their account has been targeted by an attacker or compromised by a nation-state campaign.
The sixth version of the Building Security in Maturity Model (BSIMM) was released today and for the first time includes data on the software security practices of health care organizations.
Apple and Mozilla on Thursday released patches, addressing vulnerabilities that put private user data at risk.
Adobe has decided to patch the zero day vulnerability that was disclosed in Flash Player earlier this week today — instead of next week as originally scheduled.