Security news that informs and inspires

Archive

80 results for tag Vulnerability:

NSA Joins Chorus Urging Speedy Patching for BlueKeep

The United States NSA urging enterprises and individuals to install the update addressing the BlueKeep vulnerability on Windows systems as soon as possible.

Patch, Microsoft, Vulnerability

Intel, Tech Giants Release Updates to Fix New Chip Flaws

Like the earlier Meltdown and Spectre class of bugs, the new side-channel attacks ZombieLoad, RIDL, and Fallout take advantage of weaknesses in the processor's speculative execution feature to harvest secrets from system memory.

Hardware, Vulnerability

Severity of FaceTime Bug Depends on Threat Model

Apple is fixing the FaceTime bug, so it is clearly serious. But how bad it will impact users depend on their personal threat models.

Privacy, Vulnerability, Apple, Ios

Decades-Old Flaws Found in SCP Clients

Several SCP clients, including OpenSSH, are vulnerable to a set of bugs that can allow an attacker to download arbitrary files.

Vulnerability

Critical Kubernetes Bug Gives Anyone Full Admin Privileges

With a 9.8 rating on the Common Vulnerability Scoring System, the privilege escalation flaw in container orchestration system Kubernetes is as bad as it can get. Any user will be able to remotely gain full administrator privileges on any node in the cluster.

Vulnerability, Open Source, Patching