Vulnerability

Cloud security concept image showing a cloud symbol placed on top of a circuit board. — Vulnerability management complexity is leaving enterprises at serious risk Fragmented data and siloed processes mean remediation is taking too long

Three-dimensional lock icon isolated on abstract blue background — A critical Ivanti flaw is being exploited in the wild – here’s what you need to know Cyber criminals are actively exploiting a critical RCE flaw affecting Ivanti Connect Secure appliances

Researchers claim an AMD security flaw could let hackers access encrypted data Using only a $10 test rig, researchers were able to pull off the badRAM attack

Latest about Vulnerability

Hyundai vulnerability allowed remote hacking of locks, engine

By Rory Bathgate published 30 November 22

News Researchers discovered flaws in a number of apps linked to car brands that allowed for personal details and remote control of vehicles using easily-obtained IDs

News

A close up shot of a computer screen showing lines of programming code

NSA: Phase out memory-unsafe languages like C and C++

By Zach Marzouk published 11 November 22

News The US agency advises organisations to begin using languages like Rust, Java, and Swift

News

Lenovo patches ThinkPad, Yoga, IdeaPad UEFI secure boot vulnerability

By Rory Bathgate published 10 November 22

News Mistakenly used drivers could allow hackers to modify the secure boot process

News

GitHub launches private vulnerability reporting to secure the software supply chain

By Connor Jones published 10 November 22

News The new platform aims to simplify vulnerability disclosure and minimise instances where researchers avoid reporting out of personal convenience

News

OpenSSL 3.0 vulnerability: Patch released for security scare

By Connor Jones published 1 November 22

News The severity has been downgraded from 'critical' to 'high' and comparisons to Heartbleed have been quashed

News

Graphic showing a red unlocked padlock surrounded by blue locked padlocks

Major security exploits expected to rise before New Year

By Zach Marzouk published 1 November 22

News Supply chain attacks are also expected to increase, along with affiliate programmes becoming more popular

News

Bright blue code appearing on screen to denote hacking

Second-ever OpenSSL critical vulnerability teased, 10 years after Heartbleed

By Rory Bathgate published 28 October 22

News All OpenSSL versions beyond 3.0 are at risk, with more details due to be released alongside a patch on 1 November

News

Apple patches actively exploited iPhone, iPad zero-day and 18 other security flaws

By Rory Bathgate published 25 October 22

News The out-of-bounds write error is the eighth actively exploited zero-day impacting Apple hardware this year and could facilitate kernel-level code execution

News

Two screens showing computer code with a red box displaying the word 'PowerShell'

Undetectable PowerShell backdoor discovered hiding as Windows update

By Rory Bathgate published 19 October 22

News SafeBreach researchers identified the backdoor, which they say went undetected on all major antivirus programs

News

Office 365's encryption feature can be easily hacked, warns WithSecure

By Rory Bathgate published 19 October 22

News Researchers advise enterprises to move away from Office 365 Message Encryption, claiming its messages can be decrypted without a key

News

1 2 3 4 5 6 7 8 9 Archives

Get the ITPro. daily newsletter

Receive our latest news, industry updates, featured resources and more. Sign up today to receive our FREE report on AI cyber crime & security - newly updated for 2024.

Contact me with news and offers from other Future brandsReceive email from us on behalf of our trusted partners or sponsors

By submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.