GitHub users will now be able to privately report vulnerabilities to code maintainers. The feature was in public beta since last year but has been graduated to general availability.
Exploits RSS
_medium.jpg)
Google's Project Zero team has published its findings for 0-day exploits in the year 2021. It detected the most 0-days in this year but some positive insights that can be drawn too.
The infamous Hafnium group which successfully targeted on-premises Microsoft Exchange servers is now going after Windows using Tarrask malware which evades detection by cleaning its activities.
The week that's just ending has brought news relating to Inspire 2021, the ever-present Patch Tuesday, and even a small helping of gaming news. Be sure to catch up via our very handy overview.
Apple's IOS 13 users may have to upgrade their software to patch an exploit that was recently discovered by security researcher Jose Rodriguez. It allows anyone to bypass the screen lock.
The United States government is buying up zero-day and other types of digital exploits found in popular software. Their official stated goal is to use these in developing attack programs.
Expanding their bug bounty program, Microsoft is now offering a minimum of $500 as a reward for exploits found in their online services such as Office 365, Outlook, Yammer and Lync.
Microsoft has announced a 'bounty program' for people who find exploits inside Windows 8.1, with up to $100,000 offered, plus rewards for finding vulnerabilities in the Internet Explorer 11 preview.
Oracle's most famous product, Java, has a few more woes to add to its past week after a Polish security firm discovered two more potential weaknesses hackers could use in future attacks.
The RSA has unveiled a product allowing users to split their passwords across two different computer servers for additional security; hackers will need access to two different servers to attack.
The PlayStation Vita is scheduled for release in the United States and Europe in just over a week, but that does't mean that the console hasn't already been exploited. However, piracy isn't an option.
Microsoft posted a total of 74 bulletins in 2009 which patched 190 exploits in their operating systems and software. June was the biggest patch month, offering a total of 10 bulletins and 31 exploits...
According to a report released today by VoIP security firm Sipera Systems, Internet phone service company Vonage may be vulnerable to attacks by hackers through a variety of different means including eavesdropping, spam, spoofing and...
Noted hacker HD Moore has posted exploits for a vulnerability in Apple's iPhone, the same flaw that's been used by others to unlock the smart phone so it will work on other networks. The vulnerability,...
Exploits appeared within hours for two of the bugs that Microsoft Corp. fixed Tuesday. Microsoft's June set of security updates patched 15 separate vulnerabilities, nine of them labeled "critical," the company's most serious threat rating....
Attackers have released exploit code targeting two previously patched flaws in Sun Microsystems' Java Runtime Environment (JRE) and Java Software Development Kit (SDK). The flaws could allow an attacker to remotely execute code on a...
A recently identified Internet Explorer security hole is now being exploited and Microsoft hopes to include a fix for it in its April 11 patch or maybe even earlier, according to a posting on a...
Apple's switch from PowerPC to Intel-based Macs could lead to more attacks and cross-platform exploits, according to some researchers and solution providers. OS X includes features that make it a target for malware, and the...
The Windows Metafile (WMF) bug that caused users -- and Microsoft -- so much grief in December and January spread like it did because Russian hackers sold an exploit to anyone who had the cash,...
Almost a month after Microsoft released a fix for a security issue in the WINS (Windows Internet Name Service) name server, malicious exploits continue to haunt tardy network administrators. According to an alert from the...
Online vandals are using a program to compromise Windows servers and remotely control them through Internet relay chat (IRC) networks, system administrators said Saturday. Several programs, including one that exploits a recent vulnerability in...
A new computer worm attempts to spread by taking advantage of concerns over the killer flu-like virus, SARS. Known as Coronex-A, the mass-mailer worm forwards itself to all contacts in Outlook address books and attempts...
A Venezuelan security consultant has released a small program designed to compromise Microsoft Internet Information Service servers that haven't had a recent security hole patched. Monday's public release of the program's source...
Thanks Big Booger A group of Japanese security enthusiasts has developed a little tool called IE'en which exposes traffic between an IE user and any server he's contacting, including logins and passwords...
