Collaborate Disseminate
Imagine if someone who didn’t have your password could sneakily modify data that was encrypted with it. Continue reading Serious Security: Linux full-disk encryption bug fixed – patch now!
Latest episode -listen to it or read it now! Continue reading S3 Ep65: Supply chain conniption, NetUSB hole, Honda flashback, FTC muscle [Podcast + Transcript]
One bug in the January 2022 Patch Tuesday list is getting lots of attention: “HTTP Protocol Stack Remote Code Execution Vulnerability”. Continue reading Wormable Windows HTTP hole – what you need to know
Got a router that supports USB access across the network? You might need a kernel update… Continue reading Home routers with NetUSB support could have critical kernel hole
Two popular open source JavaScript packages recently got “hacked” in a symbolic gesture by the original project creator. Continue reading JavaScript developer destroys own projects in supply chain “lesson”
Where were YOU on the night of 17 May 2002? And what about the day after that? Continue reading Honda cars in flashback to 2002 – “Can’t Get You Out Of My Head”
“It’s Log4Shell, Jim, but not as we know it.” How to find and fix a JNDI-based vuln in the H2 Database Engine. Continue reading Log4Shell-like security hole found in popular Java SQL database engine H2
We’re back for 2022 – listen now! Continue reading S3 Ep64: Log4Shell again, scammers keeping busy, and Apple Home bug [Podcast + Transcript]
Remember the Equifax breach? Remember the $700m penalty? In case you’d forgotten, here’s the FTC to refresh your memory! Continue reading FTC threatens “legal action” over unpatched Log4j and other vulns
The finder of this bug insists it “poses a serious risk”. We’re not so sure, but we recommend you take steps to avoid it anyway. Continue reading Apple Home software bug could lock you out of your iPhone