tag
Vulnerability

Cyber risk analysis, assessment, and management: an introduction

Risk analysis is the first step towards managing risks, particularly when it comes to cyber risks. This recorded webinar introduces and explains key concepts, with links to several useful risk assessment tools.

Millions of WordPress sites left vulnerable by plugin flaw

Millions of WordPress sites are vulnerable to a scripting flaw found in two popular plugins, one of which can be found in the default installation of the blogging platform.

Hilton HHonors accounts put at risk of hijacking through simple web flaw

Security researchers discovered a vulnerability on the Hilton HHonors website, making it straightforward to hijack any other user’s account.

Cisco vulnerability could allow attackers to eavesdrop on private conversations

A vulnerability in Cisco’s SPA300 and SPA500 IP phones could allow hackers to eavesdrop on private conversations from anywhere in the world, reports The Register.

Operating System Vulnerabilities, Exploits and Insecurity

iOS and OS X the most vulnerable operating systems? Don’t confuse vulnerabilities with exploits, or patch frequency with insecurity.

Thunderstrike! How a radar-proof rootkit could infect your Mac

A security researcher describes how malware could infect your Mac’s boot ROM, and spy on your activities, with little chance of you ever realising.

Unpatched security hole has left millions of Moonpig customers at risk for 17 months

Moonpig, the online personalised card company, has been accused of a shockingly sloppy attitude to security, after apparently leaving a serious hole in its security unpatched.

Tor Network warns of potential attack

Is the Tor Network about to be knocked offline? Insiders certainly seem to think so as intelligence of a credible threat against the network’s relays has been received. Is this a genuine threat to the Tor Network’s ability to function?

Could hackers give you a heart attack or drugs overdose?

There is growing concern that in the rush to embrace technology to save and improve the lives of patients, medical scientists may have forgotten something important: security.

Yahoo told to “pull your pants up” after Shellshock hack claims

Yesterday, security researcher Jonathan Hall, of a company called Future South Technologies, accused Yahoo of having suffered a serious security breach via the recently discovered Shellshock vulnerability in Bash.

Week in security: Bash Bug, BlackEnergy and hoax attacks

This week, a serious software vulnerability, which rapidly became known as the ‘Bash Bug’ or ‘Shellshock’ dominated the headlines, as two other faked news stories showed that hoaxes can fool the world very easily these days.

Secret app takes mere minutes to hack, revealing anyone’s secret via simple vulnerability

Do you trust the internet with your secrets? Perhaps you shouldn’t, even if you’re using an app which professes to “deliver anonymously” secrets to your friends, and their circles, without identifying you as the originator…

Wi-Fi security – can inflight internet REALLY hack planes?

Aircraft communications equipment can be hacked via Wi-Fi and inflight entertainment systems, allowing access to communications systems aboard aircraft in flight – and even military systems could be at risk.

“I’ve been hacked, and now I’m pregnant!”

An embedded microchip that stops you from becoming pregnant? Would you trust it to protect itself properly from a hacker attack?

LastPass security holes found by researcher, says password management firm – but no need to panic

LastPass has gone public about a couple of security holes that were found in its popular online password management software.

That’s enough to send a shiver down the spines of the many internet users who trust the service to store its passwords securely, but the company says that there is no need to panic.

TweetDeck flaw uncovered “by accident”

A vulnerability in the official Twitter client Tweetdeck left users vulnerable to attack, forcing thousands of users to retweet cryptic lines of code to other users. Twitter repeatedly shut down the service, despite assurances the flaw had been ‘fixed’.

‘Major’ Smart TV vulnerability could allow mass wireless attacks

A vulnerability in the way interactive apps work on many so-called Smart TVs could allow teams of relatively unskilled hackers to attack thousands of devices at once, a team of Columbia University researchers claims in a new paper.

Mystery surrounds Bitly’s urgent security warning following security breach

If you have an account on link-shortening service Bitly, you should take steps now to protect your account.

Heartbleed claims British mums and Canadian tax payers as victims

The critical security vulnerability in OpenSSL known commonly as “Heartbleed” continues to raise alarms, with websites now warning that hackers have breached their systems by exploiting the bug, and stolen personal information about users.

Microsoft to fix zero-day flaw that meant just previewing an Outlook email could infect your computer

It’s one thing to have a security hole that relies upon users visiting an infected website, or opening a dodgy attachment – but it’s quite a different level of threat when simply *previewing* a message in your email client infects your computer.

Follow Us

Sign up to our newsletter

The latest security news direct to your inbox

26 articles related to:
Hot Topic
ESET Virus Radar

Archives

Select month
Copyright © 2015 ESET, All Rights Reserved.