Group items tagged

"January 07, 2016 The first WordPress update of 2016 is out and like many other incremental updates, it is being triggered by a security vulnerability. The single security issue being patched in WordPress 4.4.1 is a cross site scripting vulnerability that could have potentially enabled a site compromised."

"January 07, 2016 The first WordPress update of 2016 is out and like many other incremental updates, it is being triggered by a security vulnerability. The single security issue being patched in WordPress 4.4.1 is a cross site scripting vulnerability that could have potentially enabled a site compromised."

"Commercial software is full of security vulnerabilities from unpatched open source components developers use, according to a report Black Duck Software issued last week."

"Commercial software is full of security vulnerabilities from unpatched open source components developers use, according to a report Black Duck Software issued last week."

"Computer security researchers who expose hackable vulnerabilities in digital products face plenty of occupational hazards: They can have their work censored by threats of lawsuits from the companies whose products they hack, or they can even be criminally indicted if their white-hat hacking runs afoul of the Computer Fraud and Abuse Act. But one still-mysterious encounter between security researchers and the law points to a newer, equally troubling possibility: They can have their work subpoenaed in a criminal investigation and used as a law enforcement tool."

"Computer security researchers who expose hackable vulnerabilities in digital products face plenty of occupational hazards: They can have their work censored by threats of lawsuits from the companies whose products they hack, or they can even be criminally indicted if their white-hat hacking runs afoul of the Computer Fraud and Abuse Act. But one still-mysterious encounter between security researchers and the law points to a newer, equally troubling possibility: They can have their work subpoenaed in a criminal investigation and used as a law enforcement tool."

"Robin "Roblimo" Miller The transparency of open software means that security vulnerabilities are visible and can't be quietly swept under the rug."

"Robin "Roblimo" Miller The transparency of open software means that security vulnerabilities are visible and can't be quietly swept under the rug."

"Anybody who has been paying attention to the net over the last week or so will certainly have noticed an abundance of articles with titles like "How to hack any Linux machine just using backspace". All this press does indeed highlight an important vulnerability, but it may not be the one that they think they are talking about."

"Just as defenders find their feet, lawmakers move to outlaw security research entirely. by Sebastian Anthony - Oct 5, 2015 10:15am CEST"