Adobe pulls pay-for-patch, issues fix 

Adobe pulls pay-for-patch, issues fix

In Applications - By Darren Pauli, 15 May 2012 10:51 AM
Gaffe was a 'PR disaster'.
Apple shutters FileVault password hole 

Apple shutters FileVault password hole

In Crypto - By Darren Pauli, 11 May 2012 7:41 AM
Urges users to mop up logs.
151,000 domains attacked via dangerous PHP hole 

151,000 domains attacked via dangerous PHP hole

In Web/client - By Darren Pauli, 10 May 2012 4:41 PM
PHP Group issues fix for the second time.
Apple update fixes major flaws in iPhones, iPads 

Apple update fixes major flaws in iPhones, iPads

In Applications - By Dan Kaplan, 8 May 2012 9:09 AM
Hole remains in Apple desktop browser.
Microsoft patches three critical flaws 

Microsoft patches three critical flaws

In Applications - By Dan Raywood, 7 May 2012 9:58 AM
Patches will send IT admins scrambling.
Dangerous Flash flaw plugged 

Dangerous Flash flaw plugged

In Applications - By Dan Kaplan, 7 May 2012 9:58 AM
'Object confusion' could lead to system hijacking.
PHP 'zero-day' hole found 

PHP 'zero-day' hole found

In Applications - By Darren Pauli, 4 May 2012 9:10 PM
Bugged patch fails to fix flaw.
Chinese firm leaked RDP exploit code 

Chinese firm leaked RDP exploit code

In Networks - By Dan Kaplan, 4 May 2012 8:40 AM
Vulnerability sharing programs called into question.
Oracle issues workarounds for zero-day hole 

Oracle issues workarounds for zero-day hole

In Applications - By Dan Kaplan, 3 May 2012 11:22 AM
Company moves after public disclosure.
Splunk calls bug bunk 

Splunk calls bug bunk

In Applications - By Darren Pauli, 1 May 2012 11:01 PM
No authentication allows attackers to upload malcode.
Four-year old critical Oracle bug still alive 

Four-year old critical Oracle bug still alive

In Applications - By Dan Kaplan, 27 April 2012 11:44 AM
Patch ignored older installs.
Holes found in Rackspace, VPS.Net cloud services 

Holes found in Rackspace, VPS.Net cloud services

In Applications - By SC Staff, 26 April 2012 11:06 AM
Weak implementations allow dirty data to be tapped.
Samsung TVs, Blu-ray vulnerable to eternal boot loop 

Samsung TVs, Blu-ray vulnerable to eternal boot loop

In Applications - By Darren Pauli, 20 April 2012 8:10 AM
Not your typical remote control.
Bug reports fall, bounties exclude amateurs 

Bug reports fall, bounties exclude amateurs

In Networks - By Darren Pauli, Marcos Colon, 19 April 2012 8:22 AM
Less critical flaws go unreported.
Oracle patches 88 vulnerabilities 

Oracle patches 88 vulnerabilities

In Applications - By Greg Masters, 16 April 2012 9:17 AM
Fixes for Sun, Solaris and MySQL.
Oracle patches 88 vulnerabilities 

Oracle patches 88 vulnerabilities

In Applications - By Greg Masters, 16 April 2012 9:17 AM
Fixes for Sun, Solaris and MySQL.
Wicked exploit found in Linux WiFi 

Wicked exploit found in Linux WiFi

In Hackers - By Darren Pauli, 12 April 2012 3:13 AM
Anonymous student hacker finds holes in WICD tool.
Android concept app siphons sensitive data 

Android concept app siphons sensitive data

In Applications - By Darren Pauli, 11 April 2012 11:12 AM
Application bypasses permissions to steal SD and app data.
Mobile vulnerabilities top IBM report 

Mobile vulnerabilities top IBM report

In Messaging - By Marcos Colon, 24 March 2012 7:45 AM
Thousands of disclosures studied.
Microsoft probes security partners for RDP leak  

Microsoft probes security partners for RDP leak

In Applications - By Darren Pauli, Dan Kaplan, 17 March 2012 10:17 AM
Trusted partners may have leaked exploit code.
Chrome cracked at Pwn2Own 

Chrome cracked at Pwn2Own

In Applications - By Dan Raywood, 9 March 2012 9:45 AM
Google's browser first to fall at CanSecWest.
The six most dangerous infosec attacks 

The six most dangerous infosec attacks

In Hackers - By Darren Pauli, 7 March 2012 8:40 AM
And what's coming next.
Adobe patches Flash XXS hole  

Adobe patches Flash XXS hole

In Applications - By Dan Kaplan, 17 February 2012 12:09 PM
Update closes in the wild cross-site scripting vulnerability.
PcAnywhere code stolen, Symantec warns of exploits 

PcAnywhere code stolen, Symantec warns of exploits

In Applications - By Dan Kaplan, 26 January 2012 12:08 PM
Company recommends to stop using its product pending fixes.
McAfee patches spam relay flaw 

McAfee patches spam relay flaw

In Networks - By Darren Pauli, 20 January 2012 2:59 PM
Customers find their email and IP addresses on blacklists.
Qualys, MetricStream build vulnerability framework 

Qualys, MetricStream build vulnerability framework

In Risk - By SC Staff, 6 January 2012 10:47 AM
Routes vulnerabilities through investigation and remediation processes.
Microsoft preps seven security patches 

Microsoft preps seven security patches

In Applications - By Dan Kaplan, 6 January 2012 10:45 AM
Includes one 'critical' fix.
Analysis: HTML5 security holes detailed 

Analysis: HTML5 security holes detailed

In Web/client - By Darren Pauli, 4 January 2012 11:28 AM
Security shortfalls in burgeoning standard.
99 MS critical bug fixes lowest on record 

99 MS critical bug fixes lowest on record

In Applications - By Angela Moscaritolo, 15 December 2011 6:31 AM
Redmond says it hardened up.
Yahoo IM zero day patched 

Yahoo IM zero day patched

In Applications - By Darren Pauli, 9 December 2011 4:40 AM
Status messages hijacked.
Yahoo IM zero day patched 

Yahoo IM zero day patched

In Applications - By Darren Pauli, 9 December 2011 4:40 AM
Status messages hijacked.
HP printer bug sparks law suit 

HP printer bug sparks law suit

In Applications - By Dan Kaplan, 7 December 2011 10:05 AM
A New York man has started a class action suit over a printer exploit said to be capable of starting fires.
Hollywood flicks hacked  

Hollywood flicks hacked

In Applications - By James Hutchinson, 22 November 2011 1:59 PM
But holes aren't remote exploitable.
Tool kills hidden Linux bugs, vulnerabilities 

Tool kills hidden Linux bugs, vulnerabilities

In Applications - By Darren Pauli, 22 November 2011 1:45 PM
Seeks out holes in embedded libraries.
Facebook and the bug hunters 

Facebook and the bug hunters

In Hackers - By Angela Moscsaritolo, 2 November 2011 4:31 PM
The sometimes dangerous business of vulnerability disclosure is becoming profitable.
Researcher sends executable over Facebook 

Researcher sends executable over Facebook

In Applications - By Dan Kaplan, 29 October 2011 11:41 AM
Trick the parser.
'Strange' bug spotted in Chrome 

'Strange' bug spotted in Chrome

In Web/client - By Angela Moscaritolo, 26 October 2011 7:38 AM
Leads to remote code execution.
Untraceable iPhone flash SMSes carry hacked data 

Untraceable iPhone flash SMSes carry hacked data

In Hackers - By Darren Pauli, 19 October 2011 3:31 AM
Security vendors, researchers and cops baffled. Apple declares 'new' attack.
Security researcher threatened with vulnerability repair bill 

Security researcher threatened with vulnerability repair bill

In Risk - By Darren Pauli, 14 October 2011 12:39 PM
Super fund demands access to researchers' computer after receiving a vulnerability tip off.
Apple releases 98 security fixes in software updates 

Apple releases 98 security fixes in software updates

In Applications - By Angela Moscaritolo, 14 October 2011 9:44 AM
Gevey SIM, DigitNotar certificates killed.
Two critical patches for IE and Silverlight released 

Two critical patches for IE and Silverlight released

In Applications - By SC Staff, 14 October 2011 9:43 AM
MS11-081 a priority.
Holes found in SonicWall god box 

Holes found in SonicWall god box

In Networks - By Darren Pauli, 5 October 2011 2:49 PM
Pen tests poke holes in NSA 4500.
Joomla! XSS turns users to admins 

Joomla! XSS turns users to admins

In Applications - By SC Australia Staff, 30 September 2011 8:58 AM
Affects versions up to 1.70
Flash zero-day patched 

Flash zero-day patched

In Applications - By Dan Kaplan, 22 September 2011 10:09 AM
Flaw exploited for phishing XXS attacks.
Microsoft fixes borked update 

Microsoft fixes borked update

In Applications - By Dan Raywood, 21 September 2011 12:13 PM
Windows XP and Server 2003 affected.
Child abuse tip-offs sent unencrypted 

Child abuse tip-offs sent unencrypted

In Crypto - By Stewart Mitchel, 16 September 2011 12:18 PM
British police website endangered citizen information for "several months".
Millions of student exams, tests and data exposed 

Millions of student exams, tests and data exposed

In Applications - By Darren Pauli, 16 September 2011 8:35 AM
Exclusive: Zero-day holes found in the Blackboard learning platform.
Kaspersky website vulnerable to XSS 

Kaspersky website vulnerable to XSS

In Web/client - By SC Australia Staff, 1 September 2011 7:36 PM
Reddit post outs flaw.
Researchers bypass Google redirect notice 

Researchers bypass Google redirect notice

In Networks - By SC Australia Staff, 29 August 2011 1:27 PM
Burmese hacker group post proof of concept.
Manual vulnerability discovery gets smarter, faster 

Manual vulnerability discovery gets smarter, faster

In Applications - By Darren Pauli, 22 August 2011 2:56 PM
Automated vulnerability research falls short.
1 2 | Next »
Sign up to receive SC Magazine email newsletters
   FOLLOW US...
Most Read