Google engineer finds holes in three ‘secure’ browsers
It appears no anti-virus or security software is safe from Google Project Zero researcher Tavis Ormandy. Link: Google engineer finds holes in three ‘secure’ browsers
It appears no anti-virus or security software is safe from Google Project Zero researcher Tavis Ormandy. Link: Google engineer finds holes in three ‘secure’ browsers
If an application developer uses JSPatch without any malicious intentions, even then the users security is at risk. The developers who load JSPatch via an unencrypted (HTTP) channel could leave communications between the client and the server unprotected. Link: Warning — Popular ‘Hot Patching’ Technique Puts iOS Users At Risk
The Pentagon hasn’t had updated information on maintenance of the F-35 jet since May because a Lockheed Martin Corp. database doesn’t meet new government cybersecurity requirements, according to the Defense Department’s testing office. Link: Cybersecurity gap blocks Pentagon from a Lockheed F-35 database
Sucuri threat researcher Denis Sinegubko says a “massive” advertising scam campaign is affecting users visiting WordPress sites, injecting backdoors and constantly re-infecting sites. Link: WordPress under attack by whack-a-mole ad-scam malware
Hackers tried to access over 20 million active accounts on the Taobao shopping site, Chinese state media has said. Inputting login details from a stolen database of 99 million, they found nearly 21 million of the usernames were also being used for Taobao accounts. Link: Hackers targeted 20 million Alibaba customer accounts