Apple patches all the iThings, including iOS 15 hole under attack right now
Issue identified in February but owners of older kit weren't warned
Patches28 Mar 2023 | 11
Exploit
China is likely stockpiling and deploying vulnerabilities, says Microsoft
Increase in espionage and cyberattacks since law requiring vulnerabilities first be reported to Beijing
Security07 Nov 2022 | 36
Solana, Phantom blame Slope after millions in crypto-coins stolen from 8,000 wallets
SOL holders literally S.O.L.
Cyber-crime04 Aug 2022 | 35
How a crypto bridge bug led to a $200m 'decentralized crowd looting'
Flash mob exploits Nomad's validation code blunder
Security02 Aug 2022 | 24
Cyber-mercenaries for hire represent shifting criminal business model
Emerging threat group offers a broad range of attack services
Security25 Jul 2022 | 9
Google tracked record 58 exploited-in-the-wild zero-day security holes in 2021
Friends are always tellin' me, you're a user ... Just be good to free()
Security20 Apr 2022 | 14
BROADER TOPICS
CafePress fined for covering up 2019 customer info leak
Watchdog demands $500,000 after millions of people's info stolen and sold
Security16 Mar 2022 | 9
PrintNightmare: Kicking users from Pre-Windows 2000 legacy group may thwart domain controller exploitation
While Uncle Sam recommends shutting down print spooler service
Security01 Jul 2021 | 8
Check out this link! It's not like it'll crash your iPhone or anything (Hint: Of course it will)
A few lines of code that Apple's browser simply can't handle
Security17 Sep 2018 | 30
Russia's national vulnerability database is a bit like the Soviet Union – sparse and slow
By design, though, not... er, general rubbishness
Security17 Jul 2018 | 7
AAAAAAAAAA! You'll scream when you see how easy it is to pwn unpatched HPE servers
Curl request with 29 As and it's lights out for iLO 4
Systems11 Jul 2018 | 38
Windows 10's defences are pretty robust these days, so of course folk are trying to break them
White and black hats tinker with XML .SettingContent-ms files as a method to deliver malware
Security05 Jul 2018 | 21
Vlad that's over: Remote code flaws in Schneider Electric apps whacked
Putin the patch, critical infrastructure firms warned
Security02 May 2018 | 11
Researchers slap SAP CRM with vuln combo for massive damage
Directory traversal + log injection = I can see your privates
Security15 Mar 2018 |
Johnny Hacker hauls out NSA-crafted Server Message Block exploits, revamps 'em
Yep, vulns of WannaCry infamy. Why haven't you patched yet?
Security31 Jan 2018 | 7
Text bomb, text bomb, you're my text bomb! Naughty HTML freezes Messages, Safari, etc
Apple font code on iOS, macOS knackered by texted link
Personal Tech19 Jan 2018 | 35
How are the shares, Bry? Intel chief cops to CPU fix slowdowns
Don't worry, Chipzilla is 'working tirelessly' to resolve the issue
Security09 Jan 2018 | 42
BoundHook: Microsoft downplays Windows systems exploit technique
It's just not a security vulnerability, says Redmond
Security18 Oct 2017 | 11
Have MAC, will hack: iThings have trivial-to-exploit Wi-Fi bug
Project Zero reveal you really shouldn't skip the upgrade to iOS 11
Security27 Sep 2017 | 34
Ethereum-backed hackathon excavates more security holes
Smart contracts language easy to use and create exploits with
Security22 Sep 2017 | 6
Did ROPEMAKER just unravel email security? Nah, it's likely a feature
Exploit that changes content of messages after delivery found
Security23 Aug 2017 | 50
Fresh Microsoft Office franken-exploit flops – and you should have patched by now anyway
Updated Exploit combo fails to dodge Word warning prompts
Security15 Aug 2017 | 15
CIA hacking dossier leak reignites debate over vulnerability disclosure
Spy agencies more interested in stockpiling bugs than closing the gaps
Security08 Mar 2017 | 23
Penguins force-fed root: Cruel security flaw found in systemd v228
Opens door to privilege escalation attacks
OSes24 Jan 2017 | 99
Ooooh, that's NASty. Security-watchers warn over man-in-the-middle risk
Updated Small flaws, but they add up
Security18 Jan 2017 | 6
This is your captain speaking ... or is it?
Updated In-flight entertainment systems create hacker risk, say researchers
Security20 Dec 2016 | 62
Grand App Auto: Tesla smartphone hack can track, locate, unlock, and start cars
Musk's lot better get on this
Security25 Nov 2016 | 47
Definitely not another Stuxnet, researchers claim as they demo industrial control rootkit
Black Hat EU Undetectable ghost in the controller
Security08 Nov 2016 | 3
Hackers hustle to hassle un-patched Joomla! sites
If you didn't patch, you've probably been p0wned already
Security02 Nov 2016 | 3
App proves Rowhammer can be exploited to root Android phones – and there's little Google can do to fully kill it
Hardware vuln strikes 18 of 27 tested mobes
Security24 Oct 2016 | 57
US DNC hackers blew through SIX zero-days vulns last year alone
Most targets were individuals with Gmail addresses
Security20 Oct 2016 | 9
Boffins exploit Intel CPU weakness to run rings around code defenses
Branch buffer shortcoming allows hackers to reliably install malware on systems
Security20 Oct 2016 | 11
BT's Wi-Fi Extender works great – at extending your password to hackers
Got one of these gizmos? Patch its firmware ASAP
Security21 Sep 2016 | 18
Your antivirus doesn't like Ammyy. And fraudsters will use that to RAT you out (again)
If you seek ... trojans
Security19 Jul 2016 | 15
Dedupe, dedupe, dedupe dedupe dedupe... Who snuck in to attack Microsoft Edge?
DRAM, dude! Rowhammer brings down secure browser
Security27 May 2016 | 17
Miscreants tripled output of proof of concept exploits in 2015
Pastebin is for old hats. Cool black hats use Twitter now
Security05 May 2016 | 1
Researchers find hole in SIP, Apple’s newest protection feature
System Integrity Protection pwned
Security24 Mar 2016 | 14
How to evade Apple's anti-malware Gatekeeper in OS X and really ruin a fanboy's week
Need a better latch on that gate
Security01 Oct 2015 | 20
North Korea exploits 0-day in Seoul's favourite word processor
'Macktruck' attack network sends in the 'Hangman'
Security10 Sep 2015 | 11
Hacking Team Flash exploit leak revealed lightning reflexes of malware toolkit crafters
Black Hat 2015 Less than 24 hours from release to attack
Security05 Aug 2015 | 9
Major web template flaw lets miscreants break out of sandboxes
Black Hat 2015 This type of injection is way worse than XSS
Security05 Aug 2015 | 10
Borg patches enterprise ASR router DoS hole
Bad packets cause crashes.
Security31 Jul 2015 | 3
VENOM virtual vuln proves less poisonous than first feared
Analysis Potential deleterious effects more like a snakebite* than a snake bite
Channel14 May 2015 | 11
Sysadmins, patch now: HTTP 'pings of death' are spewing across web to kill Windows servers
Patch Tuesday bug reverse engineered by Thursday
Systems16 Apr 2015 | 99
Android SDK nonce flaw lets hackers fiddle with your Dropbox privates
Users of Microsoft Office Mobile, other apps should update
SaaS11 Mar 2015 | 14
WinShock PoC clocked: But DON'T PANIC... It's no Heartbleed
SChannel exploit opens an easily closed door
Security17 Nov 2014 | 10
DEATH by PowerPoint: Microsoft warns of 0-day attack hidden in slides
Might put out patch in update, might chuck it out sooner
Security22 Oct 2014 | 19
Microsoft hardens EMET security tool: OK, it's not invulnerable, but it's free
Hopes to slap down more zero-day attacks...
Security26 Feb 2014 | 15
Fiendish Internet Explorer 10 zero-day targets US soldiers
Malware blizzard timed to coincide with snowstorms
Security14 Feb 2014 | 26
Feeling twitchy about nasty IE 0-day? Microsoft promises relief today
Patch Tuesday offers balm for latest cyber-blight
Security12 Nov 2013 | 6
Yet ANOTHER IE 0-day hole found: Malware-flingers already using it for drive-by badness
You read that right: OPT OUT of a botnet by hitting Ctrl+Alt+Del
Security11 Nov 2013 | 50
Windows, Office zero-day vuln must wait for next Patch Tuesday, says MS
November's updates promise relief for critical IE and Windows bugs
Security08 Nov 2013 | 8
Microsoft hands out $28K to bug-hunters
Help us actually squish 'em and reap even bigger rewards – Redmond
Security08 Oct 2013 | 2
Hang in there, Internet Explorer peeps: Gaping zero-day fix coming Tues
What a way to celebrate a DECADE of Patch Tuesday rollouts
Security04 Oct 2013 | 13
Psst.. Know how to hack a mobe by radio wave? There's $70k+ in it for you
This year's Mobile Pwn2Own prize money laid out on the table
Security17 Sep 2013 | 7
Hackers induce 'CATASTROPHIC FAILURE' in mock oil well
Black Hat 2013 'Trivially easy' SCADA exploit could mean liquid CYBERGEDDON is nigh
Security01 Aug 2013 | 23
Android sig vuln exploit SEEN IN THE WILD
Tiny script is a big headache
Security09 Jul 2013 | 44
Microsoft plasters IE8 hole abused in nuke lab PC meltdown
Security stopgap follows shock US boffinry attack
Security09 May 2013 | 41
Are you in charge of a lot of biz computers? Got Java on them?
Your ass is 94% hanging in the breeze, my friend
Security26 Mar 2013 | 55
EA Origin vuln puts players at risk
Game platform allows remote exploits, millions vulnerable
Security19 Mar 2013 | 16
Microsoft preps UPDATE EVERYTHING patch batch
Latest turn of the Hamster Wheel of Pain
Security08 Mar 2013 | 100
Apple FINALLY fills gaping Java hole that pwned its own devs
Zero-day vuln also downed Facebook staff and other Mac users
Security20 Feb 2013 | 40
Biting the hand that feeds IT
