Critical vulnerabilities in elFinder, the popular open source web file manager, can enable unauthenticated attackers to execute arbitrary PHP code on servers hosting elFinder’s back-end PHP connector. JavaScript-based...
A Florida woman has been found guilty of accessing a protected computer and “recklessly causing damage” to a business after her employer failed to revoke her...
Security researchers have discovered a new class of DNS vulnerability that affects multiple DNS-as-a-Service (DNSaaS) providers. Researchers from cloud security firm Wiz.io discovered that non-standard implementation of DNS resolvers, when...
The second quarter of this year was accompanied by a welcome lull in Distributed Denial of Service (DDoS) attack activity. The total number of DDoS attacks decreased by...
An analysis of the popular Telegram secure messaging protocol has identified four cryptographic vulnerabilities. Although none of the flaws are particularly serious or easy to exploit, security researchers...
Multiple vulnerabilities in routers from Aruba Networks allowed attackers to conduct a series of malicious activities including remote code execution (RCE), security researchers have found. Itai Greenhut and...
Security researchers at Randorisec have uncovered numerous severe vulnerabilities in IP camera firmware from UDP Technology. UDP firmware is bundled in cameras from a variety of vendors including...
Dell has patched vulnerabilities in the Wyse Management Suite (WMS) that could open up databases to abuse and put administrative sessions at risk. On July 6, NCC Group...
Firmware vulnerabilities in a commercial-grade Netgear router opened the door to a range of exploits, including identity theft and full system compromise. The recently resolved flaws in Netgear...
John Parlee, Chief Information Security Officer (CISO) at Park Place Technologies, talks to Security magazine about key trends in the network security space, including why analytics are critical to...
Recent Comments