vulnerability

The out-of-bounds write error is the eighth actively exploited zero-day impacting Apple hardware this year and could facilitate kernel-level code exec…

SafeBreach researchers identified the backdoor, which they say went undetected on all major antivirus programs

Researchers advise enterprises to move away from Office 365 Message Encryption, claiming its messages can be decrypted without a key

A large number of customers have yet to apply mitigations necessary to avoid the critical vulnerability

ProxyNotShell remains unaddressed even as Microsoft fixes several critical flaws in its monthly package of security patches

Known vulnerabilities in Boeing’s flight software led to two fatal crashes, as well as a landmark decision with major ramifications for software devel…

The string of problematic temporary fixes for ‘ProxyNotShell’ grows longer after a 'confusing' and 'atypical' week-long vulnerability disclosure proce…

The move marks the latest step in the cyber security authority's ongoing ambition to minimise the government's exposure to attacks

In a joint advisory, US security groups have warned the prolonged campaign showed new strategies in play, with the vector still unknown

The attack revolves around counterfeit CircleCI notifications urging users to accept updated terms of use and privacy policy

The mass recall is prompted by a flaw in the vehicles' automatic window reversal system

Numerous vulnerabilities across Mozilla's products could potentially lead to code execution and system takeover

Hundreds of thousands of repositories have been found to be exposed to the vulnerability

A vulnerability in the vanity address generator Profanity led to the attack

Customers on WordFence's paid tiers will get protection from the WPGate exploit right away, but those on the free-tier face a 30-day delay

The firm also patched a high severity security flaw that lets perpetrators bypass authentication

Several issues in the monthly update require 'urgent' attention but September's Patch Tuesday only brings around half the fixes that came in August

The updates include fixes for kernel-level code execution bugs, privacy issues, and more - all impacting iPhone and iPad users

Researchers revealed the details of the six vulnerabilities at Black Hat in August but many laptops, desktops, and workstations remain vulnerable

The agency has made it imperative for all FCEB agencies to patch their systems before September 29

The application that's installed in every HP desktop and notebook was allowing hackers to elevate privileges through a DLL hijacking vulnerability

Only 2% of the apps that were found to be leaking hard-coded AWS credentials were on the Android platform, research has shown

The 'secure-by-design' approach has been met broadly positively by experts and will aim to prevent high-profile security incidents

The RCE and kernel-level bugs may have been actively exploited and could give high-level privileges to attackers