Security vulnerabilities news stories - Page 5
BMW awards Chinese security team's work in exposing connected vehicle vulnerabilities
When Chinese security researchers found vulnerabilities in BMW’s connected vehicles, BMW didn’t just fix the vulnerabilities, it awarded the team.
Singapore IMDA launches GoSecure cybersecurity programme for Singapore ICT firms
According to IMDA, the programme will benefit 200 Singapore-based ICT companies over the two-year period.
Report: Open source software plagued with vulnerabilities
78% of 1100 examined codebases contained at least one open source vulnerability, with an average of 64 vulnerabilities per codebase.
OWASP vulnerabilities plague mobile apps: Data leakage a major concern
Across two million applications analysed by Pradeo’s security engine, almost one third of applications contained an OWASP vulnerability.
Singapore organizations caught in 'patching paradox'
Singapore organizations say they don’t have the resources to keep up with the volume of patches required to remediate software flaws.
Electronic lock vulnerabilities can lead attackers directly to your hotel room
Next time you stay at a hotel as part of a business or personal trip, you may want to ask if the hotel’s locking systems are up-to-date.
CERT NZ issues security alert about Smart Install-enabled Cisco devices
CERT NZ has issued a bulletin about a cyber attack campaign that is targeting Cisco devices that have enabled Smart Install (SMI).
Illumio & Qualys combine forces to offer vulnerability threat mapping
Illumio and Qualys are joining forces to combine threat data and application dependency mapping to show potential cyber attack paths in real time.
CERT NZ issues MikroTik RouterOS vulnerability alert
MikroTik RouterOS devices are at risk of malware attacks that can spread to other devices, according to an alert published by CERT NZ last week.
GitHub boosts bug bounty program & payouts in 2017 with more to come this year
GitHub’s Security Bug Bounty program paid out more than US$166,000 in 2017 after a significant payout revamp that doubled amounts across the board.
Internet of Things
Connected medical devices pose serious security risks for healthcare firms
Healthcare organisations around the world may be using medical devices that come with serious cybersecurity risks.
Internet of Things
CERT Australia reveals this year's cybersecurity challenges
Criminals will exploit known vulnerabilities; social engineering will craft sophisticated networks; supply chain targeting will target third parties..
Singapore MINDEF's Bug Bounty Challenge nets 32 vulnerabilities in three weeks
The Singapore Ministry of Defence (MINDEF) handed out more than S$14,000 in bounties to 17 hackers as part of the Bug Bounty Challenge.
Intel amplifies Bug Bounty rewards to attract more security researchers
“We will continue to evolve the program as needed to make it as effective as possible and to help us fulfill our security-first pledge."
67% of organisations say they're understaffed to handle cybersecurity
RiskIQ's survey paints a grim picture that forecasts a 'perfect storm' where the problem of staff shortages collides with escalating cybercrime.
Intel releases Spectre & Meltdown patches for some Skylake processors
Intel has officially released patches to OEM customers and industry partners running Skylake-based platforms.
Full list of NETGEAR router vulnerabilities revealed - is your device on the list?
Many NETGEAR routers were subject to vulnerabilities that allowed attackers to take control of the devices through a password recovery feature.
'No evidence' to suggest user info was compromised by Grammarly flaw
Grammarly’s Firefox and Google Chrome browser plugins were both affected by the vulnerability.
Stop patching Spectre & Meltdown issues or risk reboot problems, Intel warns
Intel is warning all users to stop downloading patches for the Spectre and Meltdown vulnerabilities because they are causing system reboot issues.
Corporate users warned Intel AMT flaw has 'destructive' potential
Anyone who gains physical access to a machine could create a backdoor in less than 30 seconds and use the backdoor to remotely monitor activities.
Meltdown and Spectre fallout: patching problems persist
Malwarebytes has found that the patches are causing increases in CPU usage.
Intel CEO addresses Spectre and Meltdown bugs at CES keynote
Kraznich advised users to apply any updates from your operating system vendor and system manufacturer as soon as they become available.
Intel processor vulnerabilities: What you need to know about Meltdown and Spectre
Desktops, laptops, and smartphones running on vulnerable processors can be exposed to unauthorized access and information theft.
Privileged Access Management / PAM
Apple addresses serious root access vulnerability in latest MacOS High Sierra update
Apple has been quick to address the major CVE-2017-13872 security flaw in its macOS High Sierra 10.13.1 operating system.