June 12, 2015 Mozilla Increases Top Rewards in Bug Bounty Program to $10K 2 min read - Mozilla said it was dramatically increasing what it pays researchers who find major flaws in Firefox and other products as part of its bug bounty program.
May 11, 2015 New SAP Vulnerabilities Create Sticky Situation for IT Security 2 min read - New SAP vulnerabilities could pose a serious problem for IT security professionals; despite its ubiquity, SAP is often overlooked as a security risk.
May 8, 2015 New WordPress Security Release Crosses Out XSS Vulnerabilities 2 min read - A new WordPress security release is recommended for anyone running the content management platform since it addresses two critical XSS vulnerabilties.
April 28, 2015 WordPress Vulnerability Lets Cybercriminals Insert JavaScript Code via Comments Field 2 min read - A researcher says cybercriminals could exploit a WordPress vulnerability that uses JavaScript in blog comments to cause cross-site scripting attacks.
Application Security April 28, 2015 Software Defenses to OWASP’s Top 10 Most Common Application Attacks 6 min read - Software developers must learn how to build security in from the ground up to defend against the most common application attacks, as determined by OWASP.
April 17, 2015 SearchBlox Vulnerabilities Underscore the Importance of Updating Enterprise Search Tools 2 min read - A set of four SearchBlox vulnerabilities could allow cybercriminals to conduct cross-site scripting attacks and cause other potential problems.
April 13, 2015 WordPress Plugin Vulnerability Puts an Estimated 1 Million Sites at Risk of XSS Attacks 2 min read - A WordPress plugin vulnerability related to WP Super Cache could let cybercriminals create back doors, add new administrators or worse, experts say.
Software Vulnerabilities April 8, 2015 The 10 Most Common Application Attacks in Action 4 min read - Based on OWASP's list of the 10 most common application attacks, IBM has created a video series highlighting each one and how organizations can stay safe.
Software Vulnerabilities January 19, 2015 Cross-Site Scripting Attacks Pose Ongoing Threat 2 min read - Cross-site scripting (XSS) attacks exploit Web design tools to sneak malicious scripts onto users' browsers. Preventive measures can minimize the risk.
Threat Intelligence October 29, 2014 IBM X-Force Perspective on the Aftermath of Heartbleed and Shellshock 3 min read - With the Bash Shellshock exploit still clouding our vision, it's easy to lose sight of the Heartbleed OpenSSL vulnerability. How are the two similar?