Scores of vulnerable SAP deployments uncovered 

Scores of vulnerable SAP deployments uncovered

In Applications - By Darren Pauli, 18 June 2013 7:30 AM
Scan finds critical systems unpatched, facing the public web.
Java closes 40 vulns 

Java closes 40 vulns

In Applications - By Dan Kaplan, 18 June 2013 6:45 AM
Remotely exploitable.
Spear phish exploits Office vulns 

Spear phish exploits Office vulns

In Messaging - By Marcos Colon, 12 June 2013 9:30 AM
Users in India, Vietnam targeted.
Plesk exploit gives Apache privilege escalation edge  

Plesk exploit gives Apache privilege escalation edge

In Applications - By Danielle Walker, 11 June 2013 8:30 AM
Kingcope dropped exploit code.
Google dev drops Windows kernel exploit 

Google dev drops Windows kernel exploit

In Applications - By Dan Kaplan, 7 June 2013 3:15 PM
Leads to privilege escalation.
Attack campaign targeting old Word flaws 

Attack campaign targeting old Word flaws

In Applications - By Danielle Walker, 7 June 2013 1:58 PM
Makes for good phishing.
Oracle details Java security facelift 

Oracle details Java security facelift

In Applications - By Danielle Walker, 5 June 2013 7:38 AM
Applets signing alerted.
Google: Respond in a week to vulnerabilities 

Google: Respond in a week to vulnerabilities

In Applications - By Dan Kaplan, 31 May 2013 5:49 PM
Comes three years after Google requested a 60 day response.
Secunia accidentally drops zero-day on public mailing list 

Secunia accidentally drops zero-day on public mailing list

In Applications - By Dan Raywood, 30 May 2013 9:20 AM
Autocomplete error.
Ruby on Rails exploit builds IRC bot 

Ruby on Rails exploit builds IRC bot

In Web/client - By Dan Kaplan, 29 May 2013 12:38 PM
Bot open for hijack.
QuickTime dirty dozen flaws closed 

QuickTime dirty dozen flaws closed

In Applications - By Dan Kaplan, 29 May 2013 8:30 AM
Apple pushes update.
Thirteen flaws fixed in Firefox 

Thirteen flaws fixed in Firefox

In Applications - By Dan Kaplan, 16 May 2013 9:54 AM
Gets health report feature.
Microsoft patches 33 flaws, including Internet Explorer 8 zero-day 

Microsoft patches 33 flaws, including Internet Explorer 8 zero-day

In Applications - By Dan Kaplan, 15 May 2013 12:04 PM
Fix blocks drive-by download attacks.
A million drivers licenses possibly stolen via ColdFusion hole 

A million drivers licenses possibly stolen via ColdFusion hole

In Applications - By Danielle Walker, 13 May 2013 8:50 AM
US courts office popped.
Microsoft readies patch for IE zero day 

Microsoft readies patch for IE zero day

In Applications - By Dan Kaplan, 13 May 2013 8:16 AM
Patch Tuesday to close 33 vulnerabilities.
Researchers gain root to Google Australia's office system 

Researchers gain root to Google Australia's office system

In Applications - By Darren Pauli, 8 May 2013 9:46 AM
Management system unpatched.
Adobe confirms PDF tracking issue, plans to ship fix soon 

Adobe confirms PDF tracking issue, plans to ship fix soon

In Applications - By Dan Kaplan, 6 May 2013 7:36 AM
McAfee says the security vulnerability could be used in advanced attacks.
HP launches vulnerability inspection tool 

HP launches vulnerability inspection tool

In Applications - By SC Staff, 24 April 2013 7:20 AM
WebInspect updated.
ColdFusion zero day used in web host hack 

ColdFusion zero day used in web host hack

In Applications - By Darren Pauli, 17 April 2013 4:26 PM
Hole patched.
42 fixes released in Java update  

42 fixes released in Java update

In Applications - By Danielle Walker, 17 April 2013 10:25 AM
Risky apps flagged.
Microsoft fixes three critical flaws 

Microsoft fixes three critical flaws

In Applications - By Danielle Walker, 10 April 2013 8:20 AM
Remote code execution in Internet Explorer.
Sophos' flagship web security product open to attack 

Sophos' flagship web security product open to attack

In Applications - By Dan Kaplan, 4 April 2013 9:22 AM
Upgrade urged.
Blackhat pen test service opens 

Blackhat pen test service opens

In Web/client - By Danielle Walker, 18 March 2013 9:07 AM
PHP bugs zapped.
Chrome; Firefox; IE 10; Java; Win 8 fall at #pwn2own hackfest 

Chrome; Firefox; IE 10; Java; Win 8 fall at #pwn2own hackfest

In Applications - By Darren Pauli, 7 March 2013 3:46 PM
Vupen develops new ASLR and DEP bypass technique.
Popular apps riddled with flaws 

Popular apps riddled with flaws

In Applications - By Dan Raywood, 6 March 2013 8:45 AM
Authentication bypass, SQLi and clear text data.
Yahoo! updates four-year-old Java download 

Yahoo! updates four-year-old Java download

In Applications - By Darren Pauli, 14 February 2013 12:38 PM
Bundled with small business website builder.
Microsoft patches squash 13 IE vulns 

Microsoft patches squash 13 IE vulns

In Web/client - By Danielle Walker, 13 February 2013 8:01 AM
Flaws could allow remote code execution.
Spammers stole Yahoo Xtra contact lists: exec 

Spammers stole Yahoo Xtra contact lists: exec

In Messaging - By Darren Pauli, 11 February 2013 5:47 PM
Users smashed.
Mega security bugs detailed 

Mega security bugs detailed

In Web/client - By Darren Pauli, 11 February 2013 1:28 PM
Serious bugs found.
Microsoft to patch 57 holes 

Microsoft to patch 57 holes

In Applications - By Dan Kaplan, 8 February 2013 9:48 AM
Internet Explorer bugs affect all platforms.
Oracle issues megapatch to fix 50 holes 

Oracle issues megapatch to fix 50 holes

In Applications - By Juha Saarinen, 4 February 2013 6:40 AM
Fixes brought forward.
Five eyes push to declassify security vulnerability data 

Five eyes push to declassify security vulnerability data

In Networks - By Darren Pauli, 31 January 2013 12:40 PM
Security pundits push for Australian and allied agencies to release threat information to industry.
Oracle says Java security, communications improvements in pipeline 

Oracle says Java security, communications improvements in pipeline

In Applications - By Dan Raywood, 29 January 2013 6:20 AM
Java in the browser under the scope.
Barracuda appliances contain backdoors 

Barracuda appliances contain backdoors

In Applications - By Dan Kaplan, 25 January 2013 6:32 AM
Spam and Virus Firewall, Web Application Firewall, Web Filter and SSL VPN.
HP software bug makes printers pwned 

HP software bug makes printers pwned

In Applications - By Darren Pauli, 24 January 2013 1:13 PM
Printing jobs nicked, machines bricked.
60% of exploits target two-year old bugs 

60% of exploits target two-year old bugs

In Applications - By Darren Pauli, 24 January 2013 7:31 AM
Russia the hub of exploit writing.
Apps steal private Twitter data 

Apps steal private Twitter data

In Applications - By Dan Kaplan, 23 January 2013 9:32 AM
Bug now squashed.
Pen tester launches infosec bootcamp  

Pen tester launches infosec bootcamp

In Applications - By Darren Pauli, 21 January 2013 1:42 PM
Free application security training.
LinkedIn shuts clickjacking flaw 

LinkedIn shuts clickjacking flaw

In Web/client - By SC Australia Staff, 18 January 2013 2:24 PM
Users could be tricked into deleting contacts.
Patient data revealed in medical device hack 

Patient data revealed in medical device hack

In Hackers - By Darren Pauli, 17 January 2013 8:25 PM
DHS steps in, takes ownership of medical vulnerability research.
Another Java zero-day for sale 

Another Java zero-day for sale

In Applications - By Juha Saarinen, 17 January 2013 11:50 AM
Patch incomplete.
Remote zero-day hole found in Linksys routers 

Remote zero-day hole found in Linksys routers

In Networks - By Darren Pauli, 15 January 2013 10:10 AM
Researchers say all routers likely affected.
Microsoft issues out-of-band Internet Explorer patch 

Microsoft issues out-of-band Internet Explorer patch

In Applications - By Dan Kaplan, 15 January 2013 7:58 AM
Dangerous bug used in ongoing spy attacks.
BugCrowd brings bounties to the masses 

BugCrowd brings bounties to the masses

In Risk - By Darren Pauli, 15 January 2013 6:59 AM
Aussies pitch startup to Silicon Valley.
Oracle patches Java zero day 

Oracle patches Java zero day

In Applications - By Juha Saarinen, 14 January 2013 10:28 AM
Mozilla and Apple act on security flaw.
Java zero day infections increase 

Java zero day infections increase

In Applications - By Danielle Walker, 14 January 2013 9:51 AM
Exploit attacks thousands.
$10k-a-month exploit kit trumps BlackHole 

$10k-a-month exploit kit trumps BlackHole

In Applications - By Danielle Walker, 11 January 2013 10:54 AM
Two hundred new servers found hosting the Cool exploit kit.
Ruby on Rails remote exploit developed, researcher says 

Ruby on Rails remote exploit developed, researcher says

In Applications - By Darren Pauli, 10 January 2013 11:22 AM
More than 200,000 websites at risk.
Ruby on Rails pushing out 'extremely critical' fixes 

Ruby on Rails pushing out 'extremely critical' fixes

In Applications - By Darren Pauli, 9 January 2013 12:57 PM
Workaround available.
Yahoo patches XSS mail flaw  

Yahoo patches XSS mail flaw

In Applications - By Danielle Walker, 9 January 2013 10:17 AM
Researcher claims fix isn't adequate.
1 2 3 4 5 ...7 | Next »
Sign up to receive SC Magazine email newsletters
   FOLLOW US...
Most Read