30 Mar 2020

GitHub Paid Out Over $1 Million in Bug Bounties

This week, GitHub announced that it had paid hackers over $1 million in bug bounties across all of its programs in 2020 alone. The security bug program was launched in 2016 but has been accepting vulnerability reports since February of 2014. In 2019, the Microsoft owned company paid almost $600,000

Read More
12 Mar 2020

Intel Patches High Severity Flaws in Windows Graphics Drivers

Recently, Intel released security updates that patch 27 vulnerabilities as part of the Patch Tuesday, March 2020 edition. Ten of the flaws are classified as high security for their impact on Intel’s Graphics Drivers for Windows and the Smart Sound Technology integrated audio. The security risks outlined in this edition

Read More
11 Mar 2020

Microsoft March 2020 Patch Tuesday Fixes 115 Vulnerabilities

Today Microsoft released its monthly Patch Tuesday security update, publishing fixes for 115 vulnerabilities in Microsoft products. Of the 115, 24 of the vulnerabilities are classified as Critical while 88 are classified as Important. Experts advise users to install these security updates as soon as possible to mitigate possible security

Read More
11 Mar 2020

Critical Bugs in Rockwell, Johnson Controls ICS Gear

A set of critical vulnerabilities in Rockwell Automation gear was discovered recently, and the bugs affect MicroLogix 1400 Controllers as well as MicroLogix 1100 Controllers and RSLogix 500 Software. The vulnerabilities are known to require very little skill to exploit and have been discovered in both Rockwell Automation and Johnson

Read More
24 Feb 2020

PayPal ‘Critical’ Login Hack: New Report Warns You Are Now At Risk From Thieves

Over the past few weeks, PayPal has been hit with several cybersecurity incidents, including an authentication hack earlier this month in which an attacker could access an account once credentials had been phished, effectively bypassing the online payment giant’s authentication. Now, a new security report claims that PayPal’s entire authentication

Read More
12 Feb 2020

Flaws in Accusoft ImageGear Expose Users to Remote Attacks

Accusoft ImageGear reported that they had discovered seven vulnerabilities in version 19.5.0 of its ImageGear library. The flaws allow remote attackers to execute code on a victim’s machine, according to a report published by security researchers at Cisco Talos. ImageGear is a document imaging developer toolkit, designed to create, convert,

Read More
28 Jan 2020

Critical Windows 10 Browser Flaw Causes Chaos As Users Race To Fix It

Windows Media Player, Microsoft print to PDF and local USB printers are all currently plagued by a critical vulnerability mitigation in the Windows 10 browser. The US government issued a critical update now alert for all consumers operating on Microsoft Windows 10. The NSA reported the flaw, and a patch

Read More
28 Jan 2020

Intel Is Patching the Patch for the Patch for Its ‘Zombieload’ Flaw

Over the past few years, security researchers have found hundreds of vulnerabilities that allow a hacker to trick Intel’s microprocessors into unauthorized data access. As the flaws have been exposed, employees have rushed to release patches for them. However, Intel has failed to patch the underlying problem behind a serious

Read More
27 Jan 2020

MDhex vulnerabilities open GE Healthcare patient monitoring devices to attackers

Six critical and high-risk vulnerabilities have been discovered by researchers in patient monitoring devices manufactured by GE Healthcare. The vulnerabilities, collectively named MDhex, allow an attacker to make changes at the devices’ OS-level that could harm the patient through rendering the device unusable or interfering with its functions. Alarm settings

Read More
23 Jan 2020

Thousands of WordPress Sites Hacked to Fuel Scam Campaign

Over 2,000 WordPress sites have been hacked according to website security firm Sucuri. Sucuri analysts detected attackers exploiting vulnerabilities in plugins used by many WordPress customers to add additional features to their operations. The analysts detected the vulnerabilities in the third week of January. The hacks were purported to fuel

Read More