Category: Software Security

January 14, 2019

Tenable Research discovered four zero-day vulnerabilities in PremiSys access control system from IDenticard (PremiSys IDenticard). The first, a hardcoded backdoor account, “allows attackers to add new users to the badge system, modify existing users, delete users, assign permission, and pretty […]

January 9, 2019

Harold T. Martin III, a former government contractor, is still facing trial for the alleged theft of massive amounts of National Security Agency data, including documents and tools from the NSA’s Tailored Access Operations Division. Now, a new report by […]

January 8, 2019

Adobe released patches for two bugs rated “important” in its Adobe Digital Edition and Adobe Connect products. The two important vulnerabilities, patched Tuesday, include an information disclosure bug in Adobe’s ebook reader software program, Digital Edition; as well as a […]

January 7, 2019

If you run a WordPress blog, you need to get serious about keeping it as secure as possible. WordPress is a very attractive target for hackers for several reasons that I’ll get to in a moment. To help you, I […]

January 7, 2019

unCAPTCHA, an artificial intelligence-based automated system designed at the University of Maryland, has been updated to break Google’s latest audio-based reCAPTCHA challenges with an accuracy rate of 90 percent. Google has been working on refining and strengthening reCAPTCHA for years, […]

January 4, 2019

Adobe has released a security update which resolves two critical vulnerabilities uncovered in Adobe Acrobat and Reader software. The software giant said the bugs are deemed critical, as they can lead to privilege escalation and arbitrary code execution in the […]

January 4, 2019

The Weather Channel’s app secretly sucks up users’ personal data and uses it for things like targeted marketing and hedge fund analysis, the Los Angeles city attorney has claimed in a lawsuit against The Weather Company, the IBM-owned firm that […]

January 4, 2019

A British security researcher has cracked the L3 protection level of Google’s Widevine digital rights management (DRM) technology. The hack can allow the researcher to decrypt content transferred via DRM-protected multimedia streams. While “cracking Google’s DRM” sounds very cool, the […]

January 3, 2019

Patrick Wardle, a former NSA hacker who in recent years has become the de-facto expert on everything Mac malware, has created and released a Mac app that can detect certain types of macOS keyloggers. Named ReiKey , Wardle created and […]

December 31, 2018

The Los Angeles Times, Chicago Tribune, Baltimore Sun and other titles belonging to Tribune Publishing suffered distribution delays on Saturday after the company detected the malware a day earlier. Papers that share the same production platform in LA, including the […]