Software Vulnerabilities September 27, 2016

Shellshock Anniversary: Major Security Flaw Still Going Strong

5 min read - As if to celebrate its two-year anniversary, Shellshock, one of the most infamous bugs of 2014, ramped up its activity in September.

Threat Intelligence October 29, 2014

IBM X-Force Perspective on the Aftermath of Heartbleed and Shellshock

3 min read - With the Bash Shellshock exploit still clouding our vision, it's easy to lose sight of the Heartbleed OpenSSL vulnerability. How are the two similar?

September 26, 2014

Shellshock: Where the Bash Bug Could Hit the Hardest

2 min read - The Bash bug, a new vulnerability known as Shellshock, could have a sizable impact on an untold number of devices, according to security experts.

August 28, 2014

Backoff Hacker Tool: Secret Service Warns Target Malware Still Active

3 min read - According to a recent Secret Service and Department of Homeland Security release, the Backoff hacker tool is still alive and well in American POS systems.

Threat Research August 25, 2014

Why Heartbleed Still Matters: Hindsight in the Age of Pervasive Exploits

4 min read - The latest IBM X-Force Threat Intelligence Report discusses the aftermath of the Heartbleed vulnerability, what organizations can learn and improve upon.

Software Vulnerabilities April 10, 2014

What to Do to Protect against Heartbleed OpenSSL Vulnerability

5 min read - More than half of web servers on the internet use OpenSSL to safeguard data and user accounts. Versions 1.0.1 through 1.0.1f are vulnerable to an exploit that may expose user credentials, credit card data, sensitive documents and the server's certificate…