Home Tags Unpatched

Tag: unpatched

Last week: ‘OpenVPN client is secure!’ This week: ‘Unpatched bug in OpenVPN...

And it's a nasty one if the user you crack has admin rights French security outfit Sysdream has gone public with a vulnerability in the admin interface for OpenVPN's server.…

Survey: Unpatched Windows OS on the Rise

Despite the rise in vulnerabilities, the percentage of unpatched Windows operating systems grew in the first quarter compared to the previous year.

WCry is so mean Microsoft issues patch for 3 unsupported Windows...

Decommissioned for years, Windows XP, 8, and Server 2003 get emergency update.

Unpatched WordPress Password Reset Vulnerability Lingers

A zero day vulnerability exists in WordPress Core that in some instances, could allow an attacker to reset a user's password and in turn, gain access to their account.

Cloudflare Debuts Orbit Security Service to Protect IoT Devices

New service from Cloudflare provides a buffer network for IoT devices that can help protect against unpatched vulnerabilities and cyber-attacks.

Australia’ Smart meter leaders lag in securing devices

Centre for Internet Safety calls for consumer safeguards Default passwords, unpatched firmware, unencrypted traffic: according to a report from a Canberra University research organisation, Australia's smart electricity meter rollouts are characterised by n00b-level security gaffes.…

Script kiddies pwn 1000s of Windows boxes using leaked NSA hack...

Vulnerable unpatched systems expose exploitable SMB networking to world+dog The NSA's Equation Group hacking tools, leaked last Friday by the Shadow Brokers, have now been used to infect thousands of Windows machines worldwide, we're told.…

Linksys Smart Wi-Fi routers a hotbed of unpatched security flaws

Over 20 models are impacted, exposing thousands of household devices online to exploit.

Oh my Microsoft Word: Dridex hackers exploit unpatched flaw

Banking trojan-proofing will take place later today Cybercrooks are actively exploiting an unpatched Microsoft Word vulnerability to distribute the Dridex banking trojan, claim researchers.…

‘Amnesia’ IoT botnet feasts on year-old unpatched vulnerability

New variant of 'Tsunami' is a disaster waiting to happen Hackers have brewed up a new variant of the IoT/Linux botnet "Tsunami" that exploits a year-old but as yet unresolved vulnerability.…

Millions of websites affected by unpatched flaw in Microsoft IIS 6...

A proof-of-concept exploit has been published for an unpatched vulnerability in Microsoft Internet Information Services 6.0, a version of the web server that's no longer supported but still widely used.The exploit allows attackers to execute malicious code on Windows servers running IIS 6.0 with the privileges of the user running the application.

Extended support for this version of IIS ended in July 2015 along with support for its parent product, Windows Server 2003.[ 18 surprising tips for security pros. | Discover how to secure your systems with InfoWorld's Security Report newsletter. ]Even so, independent web server surveys suggest that IIS 6.0 still powers millions of public websites. In addition, many companies might still run web applications on Windows Server 2003 and IIS 6.0 inside their corporate networks, so this vulnerability could help attackers perform lateral movement if they access such networks through other means.To read this article in full or to leave a comment, please click here

Half of Android Devices Unpatched Last Year

Google said half of Android devices are unpatched and that percentage of potentially harmful apps on phones installed from all sources rose in 2016.