Collaborate Disseminate
I lived under impression that timely updates were very important. Even a home user wouldn’t like their computer to demand ransom for their data. However, the less home and the more corporate our setting is, security only becomes more, not … Continue reading Do corporate systems need to be updated immediately after updates are available? [duplicate]
Last year, ZecOps discovered two iPhone zero-day exploits. They will be patched in the next iOS release: Avraham declined to disclose many details about who the targets were, and did not say whether they lost any data as a result of the attacks, but said "we were a bit surprised about who was targeted." He said some of the targets… Continue reading New iPhone Zero-Day Discovered
Qualys this week announced the availability of a Vulnerability Management, Detection and Response (VMDR) platform based on a single agent that detects endpoint vulnerabilities and automates the patching of those systems. Sumedh Thakar, president and c… Continue reading Qualys Delivers on Promise to Automate Endpoint Security
Guest Post by By Tom Kellermann (Head Cybersecurity Strategist, VMware Carbon Black)The sudden and dramatic shift to a mobile workforce has thrust video conferencing into the global spotlight and evolved video conferencing vendors from enterprise commu… Continue reading How to Keep Your Video Conferencing Meetings Secure
I should have reserved the title from last month’s article – Let’s put the madness behind us for this month. Of course, it has a completely different meaning now in the wake of the COVID-19 pandemic chaos. The biggest change and challenge for most of u… Continue reading April 2020 Patch Tuesday forecast: Uncertainty reigns, but patching endures through pandemic
In this podcast, Prateek Bhajanka, VP of Product Management, Vulnerability Management, Detection and Response at Qualys, discusses how you can significantly accelerate an organization’s ability to respond to threats. Qualys VMDR enables organizations t… Continue reading Qualys VMDR: Discover, prioritize, and patch critical vulnerabilities in real time
I am exploring the vulnerability (CVE-2020-5250) found in PrestaShop software versions <1.7.6.4. Could somebody explain how (with which method) was the program exactly exploitable? And why is the patch provided adequate? Is this a commo… Continue reading CVE-2020-5250 php vulnerability analysis
A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2020.
The UK went into lockdown in March due to the coronavirus pandemic, these are unprecedented a… Continue reading Cyber Security Roundup for April 2020
So i find myself in a similar situation to this question:
Exploitation: Glibc and patchelf
where in I am trying to load my elf with an older version of Glibc, namely libc-2.23.so
So here’s what i did:
1. downloaded libc-2.23.so to the c… Continue reading Error with patchelf [closed]
I was privileged to be part of The Telegraph Cornavirus Podcast today, where I was asked about the security of video messaging apps.
‘How safe are video messaging apps such as Zoom, and what should users bear in mind when using them?’
My reply…
Vi… Continue reading How Safe are Video Messaging Apps?