Apple released security updates for iOS, OS X and Safari, patching a number of kernel-level code-execution vulnerabilities.
Browsing Category: Web Security
A researcher earned a $10,000 bounty from Yahoo for a stored cross-site scripting vulnerability in Yahoo Mail.
The Linux security team today patched a critical privilege escalation vulnerability in the Linux kernel discovered by startup Perception Point.
LastPass has mitigated the effects of a new phishing attack presented this weekend at ShmooCon.
Two separate Apple patches for Gatekeeper bypasses have been incomplete, and leave users exposed to attacks.
The Internet Systems Consortium (ISC) on Tuesday patched a denial-of-service vulnerability in numerous versions of DHCP.
A Silverlight vulnerability patched yesterday by Microsoft could be tied to a Russian hacker who tried to sell a similar zero day to the Hacking Team.
Microsoft only released nine bulletins for its first Patch Tuesday of 2016, but six of them are marked critical and seven can lead to remote code execution.
Adobe today patched 17 remote code execution vulnerabilities in Acrobat and Reader.
Juniper Networks has removed the backdoored Dual_EC DRBG algorithm from its ScreenOS operating system, but new developments show Juniper deployed Dual_EC long after it was known to be backdoored.