Xerox belatedly addresses web-based printer bricking threat
Firmware flaw resolved after extended 28-month disclosure process [...]
Showing only posts by The Daily Swig. Show all posts.
Privacy slalom: Human rights, media orgs offer OPSEC warning to Winter Olympics attendees
Behind the spectacle of Beijing 2022, visitors’ digital freedoms may be left out in the cold [...]
Apple pays out $100k bounty for Safari webcam hack that imperiled victims’ online accounts
Gatekeeper defenses prove no match for uXSS attack [...]
Solarwinds fixes code execution bug in enterprise helpdesk software
Exploit gave attackers access to corporate databases, although local access was required [...]
DeepDotWeb administrator gets eight-year stretch in US prison for money laundering
Tal Prihar pleaded guilty to his role in darknet kickback scheme last year [...]
Fantasy Premier League account hack surge prompts plans to introduce extra login checks for football fans
FA (belatedly) says OK to 2FA [...]
US healthcare company EyeMed reaches settlement following 2020 data breach
Vision benefits provider agrees to $600,000 [...]
Android security tool APKLeaks patches critical vulnerability
The package flaw allowed a number of malicious activities to take place [...]
Tor Project heads to Russian court to appeal against censorship
Volunteers urged to build bridges while Tor contests blockade [...]
PrinterLogic vendor addresses triple RCE threat against all connected endpoints
High severity flaws show centralized management means centralized risk, say researchers [...]
California public office admits Covid-19 healthcare data breach
Some citizens’ personal information was available to view online [...]
Triple-digit threshold: Browser makers offer compatibility testing tools as version 100 approaches
Google and Mozilla are acting to help ensure minimal disruption for site owners [...]
F5 fixes high-risk NGINX Controller vulnerability in January patch rollout
Brace for impact [...]
RCE bug chain patched in CentOS Web Panel
Shell injected on servers via bypass of local file inclusion defenses [...]
OpenSubtitles data breach: Users asked to re-secure accounts after plaintext password snafu
Movie translation site asked victims to reset passwords... then sent them in clear text [...]
Chain of vulnerabilities led to RCE on Cisco Prime servers
Full chain exploit ready for Prime time [...]
European Commission launches new open source software bug bounty program
Hackers are invited to test services used by EU agencies [...]
Was COMELEC hacked? Philippines Commission on Elections casts doubt on data breach claims
Local newspaper alleges that usernames and PINs of vote-counting machines were stolen [...]
Open debug mode in Cisco mobile networking software created critical security hole
Patch issued after testing engineers uncover RCE threat [...]
BitLocker encryption: Clear text key storage prompts security debate online
Many are questioning why keys are saved in the clear ahead of sign-in [...]
White House orders federal agencies to raise cybersecurity bar for national security systems
New guidance will bring standards into line with federal civilian networks [...]
Red Cross suffers cyber-attack – data of 515,000 ‘highly vulnerable’ people exposed
The ‘sophisticated’ attack was detected last week [...]
Eleven prolific BEC scam suspects arrested in Nigeria
SilverTerrier brought to heel [...]
GitHub Actions flaw that allowed code to be approved without review is addressed with new feature rollout
Uncheck risky setting option offered [...]
Security vulnerabilities in Umbraco CMS could lead to account takeover
Partial fix applied for two separate bugs in the open source software [...]
« newer articles | page 23 | older articles »