An update released this week for the open source file archiver 7-Zip patches a couple of serious vulnerabilities discovered by researchers of Cisco’s Talos group.
An update released this week for the open source file archiver 7-Zip patches a couple of serious vulnerabilities discovered by researchers of Cisco’s Talos group.
Infosec veteran and former CEO of WhiteHat Security Jeremiah Grossman joins Ryan Naraine on the podcast to talk about the parallels between jiu-jitsu and computer security and the ongoing cat-and-mouse game between attackers and defenders.
The Russia-linked cyber espionage group Pawn Storm has been observed targeting the Christian Democratic Union of Germany, the political party of Chancellor Angela Merkel.
Adobe has updated Flash Player for Windows, Mac and Linux to address a total of 25 vulnerabilities, including a zero-day that has been exploited in the wild.
Flash Player 21.0.0.242 and 11.2.202.616 patch type confusion, use-aftre-free, buffer overflow, directory search path, and various memory corruption vulnerabilities that can lead to arbitrary code execution.
Security researchers are seeing evidence that up to 36 global organizations have been hacked via exploits against a vulnerability in SAP Business Applications that was patched more than five years ago.
The vulnerability, patched by SAP in 2010, exists in the built-in functionality in SAP NetWeaver Application Server Java systems (SAP Java platforms).
The ongoing battle over the Federal Bureau of Investigation’s (FBI) use of a zero-day in the Tor anonymity browser hit a new gear this week with Mozilla filing a brief to get access to the vulnerability details.
On March 14, 2012, at 4:44 am in Washington, Hillary Clinton's chief of staff received a CIA employee's email with the subject line: "URGENT -- From Dave Petraeus's Chief of Staff."
Some of the attacks launched in March by a financially-motivated threat actor against organizations in North America involved a zero-day privilege escalation vulnerability affecting Windows.
According to FireEye, this sophisticated cybercrime group targeted more than 100 companies — mainly in the retail, hospitality and restaurant sectors.