Software Vulnerabilities March 6, 2017 Cheap Shock: Why Shellshock Is Still a Thing 2 min read - Although security researchers discovered Shellshock more than two years ago, it remains popular among fraudsters with basic skill sets and light wallets.
February 27, 2017 Linux Update Fixes 11-Year-Old Flaw 2 min read - A recent Linux update patched a vulnerability that enabled fraudsters to use heap spraying methods to execute arbitrary code and escalate permissions.
Application Security February 9, 2017 SAP HANA Security Evolution, From SPS08 to Now 3 min read - The SAP HANA security evolution started in 2011, peaked in 2014 and continues to deliver critical enhancements to provide analysts with greater visibility.
February 9, 2017 Mind the Gap: Closing Vulnerability Management Exposure With IBM BigFix and QRadar Vulnerability Manager (QVM) < 1 min read - IBM BigFix and QRadar Vulnerability Manager (QVM) can help security professionals close the vulnerability management exposure gap and prevent breaches.
February 6, 2017 Beyond Virtual: Vulnerability Testing Tools Now Hack Hardware 2 min read - A new Metasploit hardware bridge enables IT professionals to hack their own hardware, reducing the complexity of device-based vulnerability testing.
Endpoint December 8, 2016 How to Find and Remediate Vulnerabilities in Real Time 2 min read - IT managers should take advantage of the many resources available to help them monitor, manage and ultimately remediate vulnerabilities.
Risk Management November 1, 2016 Vulnerability Management: Do You Know Your Risks? 2 min read - Vulnerability management is a critical part of any security program, but many IT professionals fail to realize that it starts with risk management.
October 31, 2016 Windows Atom Tables Could Blow Up Security, Researchers Say 2 min read - Researchers from enSilo may have too much time on their hands: Instead of putting out fires, they came up with a method to nuke Windows security. To make it worse, this attack vector cannot be patched because of how it…
Risk Management October 7, 2016 ASN.1 Compiler Causes a Network Vulnerability 4 min read - Researchers discovered a flaw in the ASN1C compiler produced by Objective Systems, Inc. It could lead to a dangerous network vulnerability.
Software Vulnerabilities September 27, 2016 Shellshock Anniversary: Major Security Flaw Still Going Strong 5 min read - As if to celebrate its two-year anniversary, Shellshock, one of the most infamous bugs of 2014, ramped up its activity in September.