Security news that informs and inspires

Archive

60 results for tag Vulnerability:

NSA Warns Russian Attackers are Exploiting Old Exim Flaw

The Sandworm team, associated with the Russian GRU, is exploiting a flaw in the Exim mail transfer agent, the NSA warned in a new advisory.

Vulnerability, Government

GitHub Expands Scanning to Find Security Flaws in Code

The goal for secure software isn’t to never have vulnerabilities, but to be able to find vulnerabilities as soon as possible so that they can be fixed. GitHub has expanded its code scanning capabilities to make it easier for developers to identify flaws in projects that are managed on its platform.

Open Source, Github, Vulnerability, Appdev

Cisco Fixes Kerberos Authentication Bypass Bug in ASA Software

Cisco has patched a dangerous flaw in its Adaptive Security Appliance Software that could allow an attacker to bypass authentication when Kerberos is enabled.

Vulnerability

Fortinet Products Used Hardcoded Encryption Key

Several Fortinet products had a hardcoded encryption key that could allow for passive monitoring of user traffic.

Vulnerability

Open Source Flan Scan Combines Nmap with Vulnerability Scanning

Cloudflare has open sourced Flan Scan, a “lightweight” network vulnerability scanner that it uses in-house to help identify vulnerable services running in its vast network. Early reactions suggest that it shouldn’t be the sole vulnerability management tool being used in the network.

Vulnerability, Vulnerability Assessment, Network Security