Vulnerability news from FierceCIO
NewsFirefox add-on Firesheep facilitates hijacking of Facebook, Twitter sessions
A Firefox add-on called "Firesheep" was released by a freelance web application developer over the weekend. Written by Eric Butler, it was specifically designed to demonstrate the vulnerability of Read more...
Adobe warns vulnerability could crash systems
Friday evening, Adobe issued a warning about attacks that are exploiting an unpatched security flaw in Adobe Reader, Acrobat and Flash Player products. Some experts say this kind of threat is only Read more...
Buckle down all of your systems
We report this week on a little-known way for hackers to get into your system: Through your printer. Who would have even thought this could be a problem? It could be an issue if your printer holds Read more...
Data exposed on NYSE server
It has been disclosed that sensitive information about the New York Stock Exchange's computer network was available on a public server. Wired.com discovered the problem and told the NYSE. It included Read more...
Warning: Microsoft has another security problem
Microsoft has a new security problem, and there is no way to fix it. Security firm Symantec told USA Today that cybercriminals have already found the vulnerability, which affects PCs using Windows XP Read more...
Critical vulnerability opens electrical grids to attack
A critical buffer overflow bug has been found in yet another computerized control system that is used to run vital national infrastructure, such as electrical grids. Researchers from specialist firm Read more...
DNS flaws opens the door to an array of attacks
Security researcher Kaminsky, who first discovered the DNS exploit that had organizations around the world scrambling to patch their Domain Name Servers (DNS), spoke to a packed session at the Black Read more...
Study claims that open source software is a security risk
A study released earlier this week was critical of open source software after evaluating 11 such projects over the course of three months. "Open Source Study--How Are Open Source Development Read more...
Fundamental flaw in DNS protocol discovered
If
you haven't heard by now, a fundamental flaw in the DNS protocol has been
discovered by Kaminsky, director of penetration testing for IOActive.
Specific Read more...
Spending doesn't guarantee data security
InformationWeek recently polled 1,100 IT and business professionals about their plans for security, and found that they do believe their data is safer even with budgets holding steady or Read more...
| Press Releaseszvelo Researcher Discovers Google Wallet PIN Security VulnerabilityProof of concept smartphone app was developed to demonstrate the vulnerability and expose the PINGREENWOOD VILLAGE, Colo., Feb. 8, 2012 /PRNewswire/ -- A senior engineer within zvelo, a leading Read more >> Codenomicon Launches Fuzz-o-Matic Software Security Testing-as-a-Service PlatformNew cloud-based fuzzing service provides affordable zero-day vulnerability discovery OULU, Finland & SARATOGA, Calif.--(BUSINESS WIRE)-- Codenomicon, the leading vendor of proactive security Read more >> Veracode Named a Visionary in the Magic Quadrant for Dynamic Application Security TestingWith Rising Awareness of Web Application Security Risks, Veracode Is Among Application Security Testing Solutions That Leading Industry Analyst Firm Suggests Should Be Considered Mandatory By All Read more >> nCircle Benchmark Adds a Data Adapter for Tenable Nessus, Now Supports All Major Vulnerability Management ProductsCloud-based IT security benchmarking solution now available for all common vulnerability management vendors SAN FRANCISCO--(BUSINESS WIRE)-- nCircle, the leader in automated security and compliance Read more >> Tenable Network Security Offers Unique Integration with Top Patch Management SolutionsTight Integration Bridges Vulnerability Management and Patch Management Solutions Delivering Expanded Coverage, Significant Time and Cost Savings, and Improved Compliance COLUMBIA, Md.--(BUSINESS Read more >> |
