Malwarebytes

DECEMBER 18, 2022

A critical vulnerability can send countless organizations into chaos, as security teams read up on the vulnerability, try to figure out whether it applies to their systems, download any potential patches, and deploy those fixes to affected machines. This makes the growth potential of an infection exponential. Essential building blocks.

Software 81

Software Risk Firmware Internet 81

eSecurity Planet

DECEMBER 10, 2021

A critical vulnerability in the open-source logging software Apache Log4j 2 is fueling a chaotic race in the cybersecurity world, with the Apache Software Foundation (ASF) issuing an emergency security update as bad actors searched for vulnerable servers. release of Log4j 2 that fixes the RCE vulnerability.

Risk 135

Risk Software Cybersecurity Firewall 135

SC Magazine

MAY 28, 2021

Some in the security research community are concerned that over marketing of vulnerability disclosures are misleading the public about their true impact. Oh, and one more thing: it’s not really a threat to you or your organization in any meaningful sense. It can be exploited regardless of user status or account privileges.

Media 99

Media Marketing Information Security Accountability 99

ForAllSecure

MARCH 24, 2021

Shortly after OpenSSL’s Heartbleed, Shellshock was discovered lurking in Bash code two-decades old. How could open source software be vulnerable for so long? But, really, shouldn’t they have just fixed the password manager when they could? And I was able to repeat the process over and over.

Software 52

Software Passwords Internet Internet 52

ForAllSecure

MARCH 24, 2021

Shortly after OpenSSL’s Heartbleed, Shellshock was discovered lurking in Bash code two-decades old. How could open source software be vulnerable for so long? But, really, shouldn’t they have just fixed the password manager when they could? And I was able to repeat the process over and over.

Software 52

Software Passwords Internet Internet 52

Cisco Security

SEPTEMBER 28, 2022

Explore the nature of vulnerabilities in this episode of ThreatWise TV. It’s shaping up to be another big year for vulnerability disclosure. Already the number of Common Vulnerabilities and Exposures (CVEs) disclosed has crossed 18,000 and it’s on track to make this another record-breaking year.

Media 119

Media Risk Software CISO 119

ForAllSecure

OCTOBER 29, 2020

Vamosi: Bowen’s public inquiry revealed findings of multiple buffer overflows, software updates without authentication, and inadequate randomization of the ballots so that valid secrecy can be compromised -- among other vulnerabilities. Who’s keeping those systems secure? Listen to EP 08: Hacking Voting Systems.

Hacking 52

Hacking Mobile Software Technology 52