An authentication bypass in the SSH library libSSH disclosed this week could allow attackers to takeover vulnerable servers without authentication.
New statistics on breached data in 2018 so far, HIPAA compliance or lack thereof, and a report on Pentagon security. Catch up on the week's news with this roundup!
As part of October Patch Tuesday, Microsoft fixed a critical Win32k graphics remote code execution flaw in Windows that was being exploited in a small number of targeted attacks.
It's only Tuesday but if you're a system administrator that allows users to run .PDF readers by either Adobe or Foxit, you're almost certainly having a busy week already.
SAP released its monthly critical patch update for September this week, fixing 14 vulnerabilities, including some that could have allowed users to access restricted data or cause a database server to crash.
The Apache Software Foundation released patches on Wednesday for a critical vulnerability in Apache Struts - the culprit behind last year's Equifax breach - that could allow attackers to remotely execute code.
A vulnerability in WhatsApp, data leaking flaws on Comcast's website, and more -- catch up with the week's infosec news with this roundup!
The latest version of Firefox includes a new feature that integrates Have I Been Pwned, a service by security expert Troy Hunt that alerts users if their credentials have been compromised.
Adobe issued its second round of patches this month on Monday, including several that address critical issues that can lead to remote code execution.
Supply chain risk management advice, a GDPR primer, and more - catch up with the week's infosec news with this roundup!