Google Patches Critical Android Vulnerabilities
Google recently disclosed 138 Android vulnerabilities, including media framework issues that could enable attackers to execute arbitrary code remotely.
DVRs Prove IoT Malware Is Still Dangerous
With its study of over 30 types of devices, U.K. security firm Pen Test Partners concluded that DVRs remain a major IoT malware platform.
Subtitles Present New Opportunity for Remote Code Execution Across 200 Million Streaming Players
Researchers found that remote code execution attacks could occur via malicious subtitles used in many popular streaming video players.
Microsoft Update Fixes Remote Code Execution Vulnerability
The most recent Microsoft update addresses a flaw in the Microsoft Malware Protection Engine that could enable attackers to commit remote code execution.
Linux Update Fixes 11-Year-Old Flaw
A recent Linux update patched a vulnerability that enabled fraudsters to use heap spraying methods to execute arbitrary code and escalate permissions.
Mobile Security News Roundup: Top Stories From July
It has been an eventful July for mobile security, with news regarding "Pokemon Go," smartwatches, IBM MaaS360's ISO 27001 certification and more.
Remote Code Execution in Xiaomi MIUI Analytics
The IBM X-Force AppSec Research Team has discovered a remote code execution (RCE) vulnerability in MIUI, the flavor of Android developed by Xiaomi.
Microsoft Patch Tuesday – January 2014
The Microsoft security update for January 2014 dishes up a relatively small collection of patches, but it's a valuable set. The KB2916605 patches for Microsoft Word and Web Applications fix three vulnerabilities, all of which provide Remote Code...