Collaborate Disseminate
Apple has released an emergency fix for an embarrassing vulnerability that allowed people to access the highest privileges account on Mac computers without a password. The vulnerability was disclosed by a user Tuesday on Twitter. He noticed that when p… Continue reading Apple Fixes MacOS High Sierra Root Access Vulnerability
Researchers from security firm Risk Based Security have found that many installations of OpenEMR, a popular open-source electronic health records management application, contain the original setup script. This gaffe exposes the system to a complete com… Continue reading Millions of Health Records At Risk Due to Vulnerable OpenEMR Configurations
Developers of the widely used Exim message transfer agent are advising administrators to disable a feature on their email servers to protect them from a critical remote execution exploit that has been publicly disclosed. Developed at the University of … Continue reading Public Remote Code Execution Exploit Affects Thousands of Email Servers
Some computer manufacturers have started releasing patches for eight serious vulnerabilities in Intel processors or they have outlined firmware update plans for vulnerable models. Acer, Dell, Fujitsu, Hewlett Packard Enterprise (HPE), Lenovo, Panasonic… Continue reading Dangerous Intel Chip Flaw Patches Becoming Available
HP released security firmware updates this week for dozens of printers, including enterprise models, to fix a high-risk vulnerability that could allow attackers to compromise the devices. The vulnerability, tracked as CVE-2017-2750, stems from a failur… Continue reading HP Patches High-Risk Vulnerability in Business Printers
Intel has released firmware updates for many of its processors to fix eight high-risk flaws that can put systems at risk of complete compromise. The flaws are located in low-level technologies found in the Intel Management Engine (ME), the Intel Truste… Continue reading Intel Warns of Serious Processor Flaws
A Pentagon contractor left three storage buckets publicly accessible on Amazon’s S3 service, exposing more than 1.8 billion online posts collected since 2009. The messages, posted by people from around the world, were likely collected as part of … Continue reading Insecure Storage Buckets Expose 1.8 Billion Online Posts Scraped for U.S. Military
Oracle has released out-of-band security patches for a component used by multiple ERP applications from its PeopleSoft suite. The updates fix five vulnerabilities, including two critical ones that can be exploited to access data from or completely comp… Continue reading Oracle Patches Critical Vulnerabilities in PeopleSoft Applications
Kaspersky Lab has concluded an internal investigation into an incident that led to the company being accused of using its antivirus program to copy secret files from the personal computer of an NSA employee. The company believes it has identified the incident in its logs, but telemetry data revealed more than 120 malware detections on..
The post More Than 120 Malware Detections Triggered on NSA Employee’s Computer appeared first on Security Boulevard.
Continue reading More Than 120 Malware Detections Triggered on NSA Employee’s Computer
Contacts, call logs, text messages and other information from paired phones was stored unencrypted. Continue reading Researchers Hack Car Infotainment System and Find Sensitive User Data Inside