Collaborate Disseminate
An update for the popular Npm package manager used by many developers for JavaScript-based projects crashed Linux systems after changing the permissions for critical directories. Linux users who installed npm 5.7.0 released Feb. 21 quickly took to Twit… Continue reading Npm Update Crashes Linux Systems
Cisco Systems has released security updates for its Unified Communications Domain Manager (UCDM) and Elastic Services Controller (ESC) products to address critical vulnerabilities. The vulnerability fixed in UCDM, which is used for unified communicatio… Continue reading Cisco Patches Critical Flaws in Elastic Services Controller and UCDM
Cisco Systems has released security updates for its Unified Communications Domain Manager (UCDM) and Elastic Services Controller (ESC) products to address critical vulnerabilities. The vulnerability fixed in UCDM, which is used for unified communicatio… Continue reading Cisco Patches Critical Flaws in Elastic Services Controller and UCDM
Intel has released microcode patches to address the Spectre vulnerability on additional families of CPUs. Meanwhile, researchers have found a new way of implementing the Meltdown and Spectre attacks, but the variants are covered by existing patches. &#… Continue reading Spectre Patches Reach More CPUs as New Attack Variants Appear
The number of software vulnerabilities recorded last year grew by 31 percent compared to 2016 and one-third of them have public exploits, according to a new report. Vulnerability intelligence firm Risk Based Security, which maintains its own vulnerabil… Continue reading Report: Software Vulnerabilities Increased 30 Percent in 2017
More than 119,000 scanned identity documents, including passports and drivers’ licenses, belonging to people from the United States and abroad were exposed in an insecure Amazon S3 storage bucket. The storage bucket belonged to a company called B… Continue reading Identity Documents Exposed in FedEx-Owned Amazon S3 Bucket
Microsoft released patches for 50 vulnerabilities in Windows, Office, Outlook, Edge and Internet Explorer, 14 of which are rated critical. The company also released additional protections for the Meltdown and Spectre CPU vulnerabilities for older 32-bi… Continue reading Microsoft Fixes 50 Flaws in Windows, Outlook, Office and Browsers
Hackers have exploited a bug in how Telegram’s Windows messaging client displays file names that contain a right-to-left override (RLO) character, to infect users with malware. The RLO character, represented by “U+202E” in Unicode, in… Continue reading Hackers Exploit Right-to-Left Override Bug in Telegram to Distribute Malware
The Olympic Winter Games in Pyeongchang, South Korea, started off with a cyberattack that disrupted the games’ official website and caused technical problems in the press center at the Olympic Stadium shortly before the opening ceremony Feb. 9. W… Continue reading Destructive Malware Used to Attack Winter Olympics Infrastructure
Lenovo has warned customers that 24 models of its ThinkPad laptops, which are popular with business users, are affected by two critical vulnerabilities in Broadcom wireless controllers. The flaws, tracked as CVE-2017-11120 and CVE-2017-11121, were disc… Continue reading Lenovo Warns ThinkPads Vulnerable to Wi-Fi Flaws