Firefox browser’s vulnerabilities that allow a hacker to execute arbitrary code

Multiple vulnerabilities in the libstagefright library of the Firefox browser are related to integer overflows. Exploitation of these vulnerabilities could allow a malicious actor to execute arbitrary code remotely, using a specially crafted MPEG-4 video file header...

White House Support for CISA Worries Privacy Advocates

While Congress is enjoying its annual summer recess, privacy advocates are worried that the White House’s recent endorsement of the controversial CISA bill–which has been criticized by DHS officials, among others–will push the information-sharing bill over the goal line. The Cybersecurity...

Like It Or Not... You Can't Disable Windows 10 Automatic Updates

Windows 10 is all set to launch on July 29 and will also be available on USB drives for purchase in retail channels. So, if you are planning to install Windows 10 Home, one thing you must keep in your mind – You wish or not, the software updates for Microsoft’s new operating system will be...

Hack or will be in 8 months to disclose the Tesla Model S The digital security vulnerabilities-vulnerability warning-the black bar safety net

Right now, the Tesla car is perhaps the world networking of the highest consumer vehicles, has become a hackers a target. Thomas Fox-Brewster at Forbes Chinese network wrote the article said, in 8 months, held at the Defcon hacker conference, CloudFlare company Research Director Marc Rogers Marc...

Adobe released official patch: fix Hacking Team leaked Flash 0day vulnerability-vulnerability warning-the black bar safety net

Adobe today released Flash Player update patches for the repair of Hacking Team to steal the 400G data is found in the 0day vulnerability. An attacker can use this vulnerability to make the target machine the system crashes and Access Control permissions. Vulnerability This 0day vulnerability by...

Microsoft refused to fix the 3 2-bit the IE vulnerability, the reason given is: 3 2-bit programs to be eliminated-vulnerability warning-the black bar safety net

! HP security expert Dustin Childs recently disclosed one that affects millions of 3 2-bit Windows systems the IE vulnerability. Looks pretty serious isn't it? However, Microsoft does not seem to intend to fix this vulnerability...... This is a based on ASLR, address space layout randomization of...

Reporting LIVE from the HIMSS 2015 Cybersecurity Command Center

Well, its not exactly live anymore but it certainly was worth tweeting live from the brand new Cybersecurity Command Center CCC at HIMSS 2015 in Chicago a couple weeks ago given all the excitement. The CCC was the place to be at HIMSS this year with standing room only at the educational sessions...

D-Link cloud routing memory vulnerability: hack 1 minute break or leakage of online banking passwords-vulnerability warning-the black bar safety net

D-Link cloud routing memory the vulnerability may leak password Relates to 1 of 7 models; the Friends of the news group in English official website released four of the model number Router the patch, but there is no Chinese version of the Beijing news news recently, the domestic security experts...

Mandarin Oriental Confirms Data Breach at U.S., European Hotels

The Mandarin Oriental luxury hotel chain is investigating a data breach that affects credit cards used in an “isolated number” of its hotels in the United States and Europe. Company officials said that the attack involved “undetectable” malware on some of its systems and emphasized that only cred...

Change to Lollipop Encryption Policy May Not Have Much Effect, Experts Say

Google has made a subtle, but important, shift in the requirements for Android handset makers, saying now that OEMs manufacturing phones that will run Lollipop do not have to enable disk encryption by default. This is a major change from the company’s stated position from just a few months ago, b...

About.com Cross Site Scripting

About Group about.com All Topics At least 99.88% links Vulnerable to XSS & Iframe Injection Security Attacks, About.com Open Redirect Security Vulnerabilities Vulnerability Description: About.com all "topic sites" are vulnerable to XSS Cross-Site Scripting and Iframe Injection Cross Frame Scripti...

North Korea Sanctions Handed Out in Sony Hack

President Obama today signed an Executive Order authorizing sanctions against North Korea for its alleged involvement in the Sony hack. The FBI on Dec. 19 formally blamed the hack on the North Korean government; the attack destroyed workstations and resulted in the loss of employee personal and...

Home Depot Breach Cost Company $43 Million in Third Quarter

The massive Home Depot data breach disclosed earlier this fall involved the theft of 56 million credit and debit card numbers, and now the company has revealed that the incident so far has cost it $43 million. The costs are the result of both the investigation into the data breach as well as the...

'The Hacker News' Celebrating its 4th Anniversary

Dear THN Readers, 'The Hacker News' is celebrating its 4th Anniversary today and we would like to thank every single Hacker, Researcher, Journalist, Enthusiast who has contributed to our phenomenal growth. When we began our journey 4 years back as a Small Local Community of few Hackers and Securi...

BlueHat v14 is almost here

It’s that time of year and BlueHat v14 is almost upon us. As always, BlueHat is an opportunity for us to bring the brightest minds in security together, both internal and external, to discuss and tackle some of the hardest problems facing the industry today. Through this conference, our engineeri...

LSE Leading Security Experts GmbH - LSE-2014-06-10 - Perl CORE - Deep Recursion Stack Overflow

=== LSE Leading Security Experts GmbH - Security Advisory LSE-2014-06-10 === Perl CORE - Deep Recursion Stack Overflow ----------------------------------------- Affected Versions ================= Perl v5.20.1 and below Issue Overview ============== Vulnerability Type: Stack Overflow Technical...

Perl 5.20.1 Deep Recursion Stack Overflow

=== LSE Leading Security Experts GmbH - Security Advisory LSE-2014-06-10 === Perl CORE - Deep Recursion Stack Overflow ----------------------------------------- Affected Versions ================= Perl v5.20.1 and below Issue Overview ============== Vulnerability Type: Stack Overflow Technical...

Perl 5.20.1 Deep Recursion Stack Overflow Vulnerability

A stack overflow was discovered when serializing data via the Data::Dumper extension which is part of Perl-Core. By using the "Dumper" method on a large Array-Reference which recursively contains other Array-References, it is possible to cause many recursive calls to the DDdump native function an...

Travel Site Viator Claims 1.4 M Implicated in Breach

Travel website Viator.com is in the middle of notifying approximately 1.4 million of its customers that their personal information – payment card data included – may have been compromised. The San Francisco-based company, which specializes in expert curated travel suggestions, announced the breac...

TripAdvisor's Viator Hit by Massive Data Breach Affecting 1.4 Customers

TripAdvisor's Online travel booking and review website Viator has reportedly been hit by a massive data breach at its that may have exposed payment card details and account credentials of its customers, affecting an estimated 1.4 million of its customers. The San Francisco-based Viator, acquired ...