Security vulnerabilities stories - Page 18

A newly discovered flaw in Intel chips, dubbed Foreshadow, can lead attackers to access sensitive data from personal computers and cloud services.

A critical flaw in Microsoft's ADFS allows bypassing MFA, posing a severe risk, warns Okta’s REX team. Urgent patching is recommended for users.

According to a survey of 500 decision makers across several industries, 80% believe that cloud collaboration tools are vulnerable to cyber attacks.

Google Chrome's latest update brings 'site isolation' to prevent Spectre attacks, offering advanced protection by isolating each tab's process.

GitHub adds security alerts for Python, allowing users to be notified when their code depends on packages with known vulnerabilities.

Check Point’s latest Global Threat Index reveals that Trojan malware families enter Top 10 Most Wanted Ranking; Cryptomining remains top of the list.

When Chinese security researchers found vulnerabilities in BMW’s connected vehicles, BMW didn’t just fix the vulnerabilities, it awarded the team.

Singapore's IMDA launches the GoSecure programme, collaborating with SIT to enhance the cybersecurity of 200 ICT firms from July 2018 to July 2020.

78% of 1100 examined codebases contained at least one open source vulnerability, with an average of 64 vulnerabilities per codebase.

Across two million applications analysed by Pradeo’s security engine, almost one third of applications contained an OWASP vulnerability.

Singapore organizations say they don’t have the resources to keep up with the volume of patches required to remediate software flaws.

Next time you stay at a hotel as part of a business or personal trip, you may want to ask if the hotel’s locking systems are up-to-date.

CERT NZ has issued a bulletin about a cyber attack campaign that is targeting Cisco devices that have enabled Smart Install (SMI).

Illumio and Qualys are joining forces to combine threat data and application dependency mapping to show potential cyber attack paths in real time.

MikroTik RouterOS devices are at risk of malware attacks that can spread to other devices, according to an alert published by CERT NZ last week.

GitHub’s Security Bug Bounty program paid out more than US$166,000 in 2017 after a significant payout revamp that doubled amounts across the board.

Healthcare organisations around the world may be using medical devices that come with serious cybersecurity risks.

Criminals will exploit known vulnerabilities; social engineering will craft sophisticated networks; supply chain targeting will target third parties..

The Singapore Ministry of Defence (MINDEF) handed out more than S$14,000 in bounties to 17 hackers as part of the Bug Bounty Challenge.

Intel has boosted its Bug Bounty rewards to attract more researchers, with up to USD $250,000 available for side channel vulnerabilities in its products.