Flaws Patched in Siemens RUGGEDCOM NMS Product

Wed, 01 Mar 2017 15:01:41 +0000

An update released by Siemens for its RUGGEDCOM network management system (NMS) patches a couple of cross-site request forgery (CSRF) and cross-site scripting (XSS) vulnerabilities. Used in various sectors worldwide, the RUGGEDCOM NMS allows organizations to monitor, configure and maintain their RUGGEDCOM mission-critical networks. read more

Robots Vulnerable to Cyberattacks: Researchers

Wed, 01 Mar 2017 13:33:26 +0000

read more

The Importance of Speaking the Same Language in Security

Wed, 01 Mar 2017 13:11:57 +0000

Security Leaders Must Speak the Language of the Audience They Are Trying to Communicate With read more

Encryption Smackdown: PlayStation 4 vs. Xbox One!

Wed, 01 Mar 2017 12:00:29 +0000

read more

Online Fraud in the U.S. Grew Dramatically Post-EMV

Wed, 01 Mar 2017 11:38:17 +0000

read more

WordPress Plugin With 1 Million Installs Has Critical Flaw

Wed, 01 Mar 2017 09:41:49 +0000

Researchers discovered that NextGEN Gallery, a WordPress image gallery plugin that has more than 1 million active installs, is affected by a critical SQL injection vulnerability. read more

Hackers Breached Non-Classified System at Singapore's Ministry of Defence

Wed, 01 Mar 2017 04:09:39 +0000

Singapore’s Ministry of Defence (MINDEF) on Tuesday said that it hackers managed to breach a military system that handles non-classified information and access personal data, including NRIC numbers, telephone numbers, and dates of birth of roughly 850 servicemen and employees. read more

Palo Alto Networks Acquires Breach Detection Startup LightCyber

Tue, 28 Feb 2017 22:37:06 +0000

Palo Alto Networks on Tuesday announced that it has acquired breach detection firm LightCyber for $105 million in cash. read more

Cybercriminals Use Cracked Builder to Spawn Betabot Variants

Tue, 28 Feb 2017 19:23:10 +0000

Betabot, an old piece of malware that ensnares affected computers into a botnet, is now being distributed by attackers who managed to crack its builder, Sophos security researchers reveal. read more

Popular Android Password Managers Expose Credentials

Tue, 28 Feb 2017 18:04:19 +0000

Popular Android password managers are affected by serious vulnerabilities that can expose user credentials, researchers warned on Tuesday. TeamSIK, a group of security experts from the Fraunhofer Institute for Secure Information Technology in Darmstadt, Germany, has analyzed nine of the most popular Android password managers available on Google Play. read more

TLS Bug in Blue Coat Proxy Breaks Chromebooks, PCs

Tue, 28 Feb 2017 14:18:48 +0000

Products from Symantec-owned Blue Coat and likely other vendors can cause serious problems for devices running the Chrome web browser or Chrome OS due to poor implementation of the TLS 1.3 protocol. read more

"Gamaredon" Group Uses Custom Malware in Ukraine Attacks

Tue, 28 Feb 2017 11:54:36 +0000

A Russia-linked threat group tracked as “Gamaredon” has been using custom-developed malware in attacks aimed at Ukraine, Palo Alto Networks reported on Monday. read more

Insecure CloudPets Database Exposed Credentials, Private Data

Tue, 28 Feb 2017 10:11:53 +0000

A public-facing, insecure CloudPets MongoDB database was found to have leaked the login credentials of over 800,000 users, researchers warn. read more

Flaw in ESET Antivirus for Mac Allowed Code Execution

Tue, 28 Feb 2017 10:06:11 +0000

Google researchers discovered a critical flaw in ESET Endpoint Antivirus for macOS that could have been exploited by an unauthenticated attacker to remotely execute arbitrary code with root privileges. ESET has released an update that addresses the vulnerability. read more