OpenSSL have just published 2 HIGH security advisories — previously pre-announced as a single CRITICAL advisory
Continue reading “OpenSSL Security Advisories – CVE-2022-3602 and CVE-2022-3786”BlueKeep Exploit
Remember that Remote Desktop Services vulnerability from May this year (2019)? … well, now BlueKeep has an active exploit!
Protect your buckets !
Another day, another data privacy breach due to incorrect permissions on AWS S3 storage buckets Continue reading “Protect your buckets !”
New Oracle Vulnerability – CVSS 9.9
Well there’s something I wasn’t expecting to see… into my inbox I received notification of a new Oracle vulnerability, and it looks like a big one. Continue reading “New Oracle Vulnerability – CVSS 9.9”
Time to change your Twitter Password
In a blog post today, Twitter announced that they had identified a bug that stored account passwords, in clear-text (unmasked), in an internal log. Continue reading “Time to change your Twitter Password”
2018 brings … Meltdown and Spectre!
So, 2018Â has really kicked off with a bang! Â If you use a computer, tablet, phone, etc (hint, if you think you’re not then how are you reading this page 😉 )… then you really need to be aware of one of the latest vulnerabilities … and, I would argue, one of the most significant the IT industry has faced to date!
World, meet Meltdown and Spectre Continue reading “2018 brings … Meltdown and Spectre!”
KRACK – WPA2 WiFi Security Compromise
In what has been a tightly guarded message to manufacturers of WiFi Access Points, it has now been revealed that the long-trusted WPA2 security protocol has been compromised. Continue reading “KRACK – WPA2 WiFi Security Compromise”
Blueborne – Bluetooth devices beware!
So I’ve just finished reading about a new Bluetooth attack called “Bluebourne“. Â This new attack allows for remote compromise of a Bluetooth-enabled device, even if the devices are not paired to being with! Continue reading “Blueborne – Bluetooth devices beware!”
Yahoo victims right to sue following Data Breaches
Hot on the heels of my last blog post, a judge in the US has ruled that victims have the right to sue Yahoo for claims of breach of contract and unfair competition! Continue reading “Yahoo victims right to sue following Data Breaches”
700m Email Addresses Leaked
In what is likely one of the largest ever reported data breaches, over 700 million email addresses, and some passwords, have been leaked via a spambot – there is a good chance you be affected! Continue reading “700m Email Addresses Leaked”