After More Than a Decade, Wi-Fi Security Finally Gets a Major Update
WPA3 promises better authentication, stronger encryption and protection for open networks. Continue reading After More Than a Decade, Wi-Fi Security Finally Gets a Major Update
Author Archives: Lucian Constantin
Meltdown Patch Is Causing Problems for Some Ubuntu Linux Users
Many Ubuntu Linux users who installed the latest kernel updates to fix the Meltdown CPU vulnerability found themselves stuck in a boot loop and had to revert back to a previous version. The problem affected mostly Ubuntu 16.04 (Xenial Xerus), which is … Continue reading Meltdown Patch Is Causing Problems for Some Ubuntu Linux Users
Microsoft Kills Old Office Equation Editor Due to New Flaw
Microsoft has removed a 17-year-old Office component called the Equation Editor after researchers found an arbitrary code execution flaw in it. This is the second serious vulnerability found in the old code that was kept around for compatibility reason… Continue reading Microsoft Kills Old Office Equation Editor Due to New Flaw
D-Link NAS Backdoor Found Years Later in Western Digital My Cloud Boxes
A number of My Cloud network-attached storage devices from Western Digital, including some models used by businesses, were found to contain an undocumented account that could allow attackers to take over the devices. The exact same account with the sam… Continue reading D-Link NAS Backdoor Found Years Later in Western Digital My Cloud Boxes
EMC Patches Serious Flaws in Data Protection Suite
EMC has released security fixes for three vulnerabilities that, when combined, can be used to take full control of products from its Data Protection Suite: the Avamar Server, the NetWorker Virtual Edition and the Integrated Data Protection Appliance. A… Continue reading EMC Patches Serious Flaws in Data Protection Suite
Google Develops Application-Level Defense Against Spectre CPU Attack
Systems engineers at Google have come up with a technique to strengthen applications against a recently revealed attack called Spectre that could abuse a CPU feature to steal passwords, keys and other secrets from a program’s memory. The Spectre … Continue reading Google Develops Application-Level Defense Against Spectre CPU Attack
Major CPU Flaws Meltdown, Spectre Put Most Computers at Risk
The new year started with an announcement that has shaken the entire computer industry: Many modern processors found in servers, laptops and mobile devices are vulnerable to a new class of attacks that could expose sensitive information. The vulnerabil… Continue reading Major CPU Flaws Meltdown, Spectre Put Most Computers at Risk
How to Protect Your Home Router from Attacks
A comprehensive guide for choosing and setting up secure Wi-Fi. Continue reading How to Protect Your Home Router from Attacks
You Can Now Help Identify Middleboxes Holding Back TLS 1.3 Adoption
TLS 1.3 promises great improvements for the encrypted Web, both in terms of security and performance. However, its adoption has been held back for the past year by SSL/TLS proxies and other load balancing and traffic monitoring middleboxes that break c… Continue reading You Can Now Help Identify Middleboxes Holding Back TLS 1.3 Adoption
Hackers Infect Magento Shops With Malware Through Extension Flaw
Attackers are breaking into online shops built with Magento by exploiting a known cross-site scripting vulnerability within a popular extension used by merchants for customer support. A successful compromise results in malware being installed on the we… Continue reading Hackers Infect Magento Shops With Malware Through Extension Flaw