News

Exploits / vulnerabilities

Article | 10/01/2013 Java zero-day vulnerability actively exploited by attackers
An exploit for a previously unknown and currently unpatched vulnerability in Java is being used by cybercriminals to infect computers with malware, ac...
Article | 10/01/2013 Foxit Reader vulnerable to critical remote code execution flaw
Foxit Reader, a PDF viewer application often used as an alternative to the more popular Adobe Reader, contains a critical vulnerability in its browser...
Article | 10/01/2013 Yahoo email patch ineffective, security researchers say
Security researchers say a patch released by Yahoo earlier this week for a serious email vulnerability did not fix the problem, leaving users at risk.
Article | 9/01/2013 Ruby on Rails patches more critical vulnerabilities
Those using the Ruby on Rails web application framework on their websites are being advised to update the software immediately after multiple new vuln...
Article | 8/01/2013 Cisco working to fix broken patch for VoIP phones
Cisco Systems plans to release a new patch for a vulnerability in its VoIP phones after the first patch did not fix the problem, which could allow an ...
Article | 7/01/2013 Adobe warns of actively exploited ColdFusion flaws
Adobe Systems warned users of its ColdFusion application server software that hackers are reportedly exploiting unpatched vulnerabilities in the produ...
Article | 7/01/2013 Hacker finds way to run desktop applications on Windows RT
A hacker claims to have found a method of bypassing the code integrity mechanism in Windows RT, therefore allowing for desktop-style programs to be in...
Article | 4/01/2013 Dutch government aims to shape ethical hackers' disclosure practices
The Dutch government's cyber security center has published guidelines that it hopes will encourage ethical hackers to disclose security vulnerabilitie...
Article | 4/01/2013 Symantec links latest Microsoft zero-day with skilled hacker gang
Symantec is crediting a hacker group with an impressive track record as responsible for finding the latest as yet unpatched vulnerability in older ver...
Article | 3/01/2013 Ruby on Rails security updates address SQL injection flaw
The developers of Ruby on Rails, a popular Web application development framework for the Ruby programming language, released versions 3.2.10, 3.1.9, a...
Article | 3/01/2013 Website of US-based gas turbine maker also rigged with new IE exploit
The attackers who recently infected the website of the Council on Foreign Relations (CFR) with an exploit for an unpatched vulnerability in Internet E...
Article | 2/01/2013 Microsoft issues 'fix it' for IE vulnerability
Microsoft has released a quick fix for a vulnerability in older versions of its Internet Explorer browser that is actively being used by attackers to ...
Article | 21/12/2012 Poor SCADA security will keep attackers and researchers busy in 2013
An increasing number of vulnerability researchers will focus their attention on industrial control systems (ICS) in the year to come, but so will cybe...
Article | 20/12/2012 Samsung promises fix for vulnerability in Android devices
Samsung said Wednesday it is working on an update for a software flaw that could allow attackers to siphon personal data from a phone.
Article | 20/12/2012 Adobe to patch 2-year-old Shockwave vulnerability next year
Adobe plans in February to close a dangerous hole in its Shockwave application that causes the application to be downgraded when a user launches older...