Rss Bot

Cisco has issued a fix for a critical flaw in its Virtual Wide Area Application Services (vWAAS), software for optimizing WAN on virtual private cloud infrastructure. View the full article

A low-privileged process on a vulnerable machine could allow data harvesting and DoS. View the full article

Join Threatpost on Sept. 16 at 2pm ET when we bring together leading voices in the Bug Bounty community for a LIVE webinar on the Five Essentials for Running a Successful Bug Bounty Program. View the full article

Up to 61 percent out of the IATA (International Air Transport Association) airline members do not have a published DMARC record. View the full article

Vulnerability management continues to challenge businesses, as they face tens of thousands of bugs with every scan. View the full article

This post is originally published on Designmodo: Responsive vs. Adaptive: 7 Best Mobile Web Design Practices In 2019, 80% of users used a mobile device to search the internet. How your website displays to mobile users can make or break your brand. With the number of users who rely on mobile devices, it’s a no brainer … For more information please contact Designmodo View the full article

Researchers have discovered freely available PoC code and exploit that can be used to attack unpatched security holes in Apache Struts 2. View the full article

The XCSSET suite of malware also hijacks browsers, has a ransomware module and more -- and uses a pair of zero-day exploits. View the full article

The cross-site scripting flaw could enable arbitrary code execution, information disclosure - and even account takeover. View the full article

Researchers disclosed flaws in Amazon Alexa that could allow attackers to access personal data and install skills on Echo devices. View the full article

This post is originally published on Designmodo: 10 Years of Designmodo: Highs, Lows, Lessons and Inspiration Designmodo turns 10 years old in August 2020! 🥳 All this time, I’ve never shared what happens behind the scenes here. It’s been an amazing journey – so I’ve decided to share how the company came to be what it … For more information please contact Designmodo View the full article

Citrix said that it anticipates malicious actors "will move quickly to exploit" two critical flaws in its mobile device management software. View the full article

One of the two zero-day bugs is rated ‘critical’ and is classified as a remote code-execution bug impacting Microsoft’s Internet Explorer. View the full article

A critical privilege-escalation flaw affects several popular Intel motherboards, server systems and compute modules. View the full article

Adobe patched critical and important-severity flaws tied to 26 CVEs in Acrobat and Reader. View the full article

Four critical-severity flaws were recently disclosed in the Find My Mobile feature of Samsung Galaxy smartphones, which if exploited could allow attackers to force a factory reset on the phones or spy on users. View the full article

Three separate proof-of-concepts on Bash, Python and Ruby posted to outsmart fix issued last year to remedy pre-auth RCE bug. View the full article

The vulnerability allows attackers to bypass Content Security Policy (CSP) protections and steal data from website visitors. View the full article

Remote, unauthenticated attackers could exploit the TeamViewer flaw to execute code and crack victims' passwords. View the full article

Researchers identified serious flaws in Qualcomm’s Snapdragon SoC and the Hexagon architecture that impacts nearly half of Android handsets. View the full article

Legacy applications don't support modern authentication -- and cybercriminals know this. View the full article

An inside look at how nation-states use social media to influence, confuse and divide -- and why cybersecurity researchers should be involved. View the full article

Researchers went into detail about the discovery and disclosure of 19 security flaws they found in Mercedes-Benz vehicles, which have all been fixed. View the full article

Cisco recently patched the high-severity flaw, which could allow remote, unauthenticated attackers to launch DoS attacks against its popular small business switches. View the full article

Voting machine technology seller Election Systems & Software (ES&S) offered an olive branch to security researchers with new safe harbor terms and vulnerability disclosure policies at Black Hat USA 2020. View the full article