According to Ken Munro, a security researcher with Pen Test Partners, gaining access to the network of a ship is in most cases “a low-skill attack.” As Munro explains: “[P]assword security and patch management are so poor at sea that compromise does not require significant expertise.” This is very worrisome, because a

New research by Independent Security Evaluators (ISE) has found serious flaws in the top password managers 1Password, Dashlane, KeePass and LastPass, which render the products about as secure as text files containing passwords. ISE CEO Stephen Bono stated that “100 percent of the products that ISE analyzed failed to provide the

As part of Patch Tuesday, Microsoft and Adobe each released over 70 fixes for security flaws in their products. One of the Microsoft patches addresses a privilege escalation vulnerability affecting Microsoft’s Exchange server, which is likely to be under active exploitation. According to Dustin Childs of Trend Micro, the flaw “allows

Security researchers with Trustwave have spotted serious security flaws in four connected video conferencing products by Lifesize. The vulnerabilities could enable threat actors to remotely take control of the devices and access audio and video recordings. The affected products are Lifesize Team, Lifesize Room, Lifesize Passport and Lifesize Networker. Lifesize is

On Thursday, Apple released iOS 12.1.4, the latest version of it’s mobile operating system, which patches four discovered security holes. Two of the vulnerabilities were connected to the recently uncovered FaceTime bug that allowed users to turn on the microphone and camera of the person they were calling. The other

Check Point researchers have found a whopping 25 security flaws affecting popular remote desktop protocol (RDP) software, 16 of which were labeled as “major”. RDP makes it possible to remotely operate devices on a network. RDP accounts are increasingly popular targets for cybercriminals, as obtaining access to one can give

FaceTime users may want to turn off the app on their iOS device to prevent threat actors from spying on them. Apple is preparing an out-of-bound patch for a major iOS security flaw affecting FaceTime. The bug allows callers to tune in to the audio and video feeds from the microphone and

Apple has released security patches and other fixes for a host of flaws affecting iOS, macOS, tvOS, watchOS, Safari and iCloud. Many of the 31 iOS patches fixed arbitrary code execution vulnerabilities affecting various features including Bluetooh, FaceTime and Kernel. Other iOS security flaws that were addressed could have enabled

Browser extensions have a bad reputation when it comes to security, as they frequently contain vulnerabilities that put users at risk. New research highlights these risks by describing how certain privileged extensions for the Chrome, Firefox and Opera browsers are vulnerable to exploitation by web applications. The discovered flaws can

A new report by Avast based on data from 163 million PCs shows that 55% of software on Windows computers is not up to date, putting users at risk for cyberattacks exploiting known software vulnerabilities. Outdated versions of Adobe Shockwave, VLC Media Player and Skype can be found on a whopping 94%