Collaborate Disseminate
Microsoft released an emergency update for a zero-day vulnerability disclosed by Google in the Microsoft Malware Protection Engine bundled with most versions of Windows. Continue reading Emergency Update Patches Zero Day in Microsoft Malware Protection Engine
There has been a recently discovered remote code execution in the Microsoft Malware Protection Engine that had the potential to allow an attacker to completely take over affected computers. This has been fixed by Microsoft in an update to the Microsoft Malware Protection Engine in affected programs. This will automatically apply, … Continue reading → Continue reading remote code execution in the Microsoft Malware Protection Engine CVE-2017-0290
Google Project Zero researchers Tavis Ormandy and Natalie Silvanovich found a remotely exploitable Windows vulnerability that Ormandy called he worst in recent memory. Continue reading Wormable Windows Zero Day Reported to Microsoft
LastPass Leaking Passwords is not new, last week its Firefox extension was picked apart – now this week it’s Chrome extension is giving up its goodies. I’ve always found LastPass a bit suspect, even though they are super easy to use, and have a nice UI they’ve had TOO many serious security issues for a […]
The post LastPass Leaking…
Read the full post at darknet.org.uk
Continue reading LastPass Leaking Passwords Via Chrome Extension
LastPass has reportedly fixed one of three bugs in the password manager discovered by Google research Tavis Ormandy in the last week. Continue reading LastPass Fixes Ormandy RCE Bug; Two Outstanding Vulnerabilities Remain
Cloudflare said it could not find evidence of malicious exploitation of the Cloudbleed vulnerability, even though the bug was triggered 1.2 million times. Continue reading Cloudbleed Triggered 1.2M Times, Damage Kept to Minimum
Mike Mimoso and Chris Brook recap RSA and discuss the news of the week including the impact of Cloudflare’s “Cloudbleed” bug, Google breaking SHA-1, and more. Continue reading Threatpost News Wrap, February 24, 2017
Cloudflare has fixed an issue where its customer traffic was leaking memory that included sensitive information including authentication cookies, POST data and more. Continue reading Cloudflare Bug Leaks Sensitive Data
A severe security vulnerability has been discovered in the CloudFlare content delivery network that has caused big-name websites to expose private session keys and other sensitive data.
CloudFlare, a content delivery network (CDN) and web security pro… Continue reading Serious Bug Exposes Sensitive Data From Millions Sites Sitting Behind CloudFlare
The private messages you sent on OKCupid last month or the data collected by your FitBit could be floating around the internet right now. Add to that a load of passwords and private data on some of the web’s most popular sites. Big businesses like Uber, 1Password, OKCupid and FitBit use Cloudflare, a massive content […]
The post Cloudflare has been massively leaky for months appeared first on Cyberscoop.
Continue reading Cloudflare has been massively leaky for months