Home Tags Security researcher

Tag: security researcher

LastPass fixes serious password leak vulnerabilities

Developers of the popular LastPass password manager rushed to push out a fix to solve a serious vulnerability that could have allowed attackers to...

UK vuln ‘fessing pilot’s great but who’s going to give a...

Too many ppl, amirite? Poor old Brit govt ...A security researcher has welcomed the UK's launch of a vulnerability co-ordination pilot while cautioning that...

In-the-wild exploits ramp up against high-impact sites using Apache Struts

Enlarge (credit: AlienVault) Eight days after developers patched a critical flaw in the Apache Struts Web application framework, there has been no let-up...

Dahua video kit left user credentials in plain sight

Bad code or backdoor? Whichever it was, patch it now Chinese security camera/DVR company Dahua is pushing firmware patches after accusations by a security...

Researchers uncover PowerShell Trojan that uses DNS queries to get its...

Enlarge (credit: Abraxas3d) Researchers at Cisco's Talos threat research group are publishing research today on a targeted attack delivered by a malicious Microsoft...

Java and Python FTP attacks can punch holes through firewalls

The Java and Python runtimes fail to properly validate FTP URLs, which can potentially allow attackers to punch holes through firewalls to access local...

Dissecting Malware

Four-day course on reverse engineering There are just a handful of reverse engineers clustered at the very top of the information security profession.From March 30...

Amnesty International uncovers phishing campaign against human rights activists

Enlarge / A phishing e-mail aimed at worker rights activists in Qatar and Nepal crafted to fool targets into giving up their credentials. (credit:...

Newly discovered flaw undermines HTTPS connections for almost 1,000 sites

Enlarge Encrypted connections established by at least 949 of the top 1 million websites are leaking potentially sensitive data because of a...

​Spammer’s delight: Gmail weirdly doesn’t see spoofed @gmail.com addresses as junk

Spammers could have a field day with Gmail users, simply by spoofing real Gmail accounts, according to a security researcher.

Dino Dai Zovi on Securing Linux in Modern Workloads

Security researcher Dino Dai Zovi talks about a new company he cofounded called Capsule8 that will help IT organizations counter threats to Linux infrastructures.

Dozens of iOS apps fail to secure users’ data, researcher says

Dozens of iOS apps that are supposed to be encrypting their users’ data don’t do it properly, according to a security researcher.Will Strafach, CEO...