An OpenSSL vulnerability patched in early May with the release of versions 1.0.2h and 1.0.1t still hasn’t been patched on many of the world’s most visited websites, exposing potentially sensitive traffic to man-in-the-middle (MitM) attacks.
An OpenSSL vulnerability patched in early May with the release of versions 1.0.2h and 1.0.1t still hasn’t been patched on many of the world’s most visited websites, exposing potentially sensitive traffic to man-in-the-middle (MitM) attacks.
Carnegie Mellon University's CERT has issued a security advisory on the MEDHOST Perioperative Information Management System (PIMS), a system designed to streamline the progress from patient introduction to surgery. It's not a vulnerability we should expect these days - especially for a medical system - but PIMS contains hardcoded credentials. These credentials provide access to the customer database.
LG has released fixes for two serious vulnerabilities affecting the company’s Android smartphones, including a flaw that can be exploited remotely to delete and modify text messages.
AMSTERDAM - HACK IN THE BOX - Researchers have demonstrated that remote attackers can wirelessly change the time on network time protocol (NTP) servers over long distances using inexpensive devices.
Over the past few weeks, researchers have observed a spike in the number of malicious spam emails using attached JavaScript files to distribute malware such as the infamous Locky ransomware.
The hackers behind the $81 million heist from the Bangladesh central bank have likely been involved in a series of attacks on the financial system, a US security firm has concluded.
The authors of Android Trojans have adapted their attack models to target the permission-granting model that Google has introduced in Android 6.0 Marshmallow, security firm Symantec has discovered.