Two recently disclosed Linux kernel vulnerabilities that remain unpatched could be exploited for local denial-of-service (DoS).
https://www.securityweek.com/dos-vulnerabilities-impact-linux-kernel
Cyber Security and Information Systems Information Analysis Center
Two recently disclosed Linux kernel vulnerabilities that remain unpatched could be exploited for local denial-of-service (DoS).
https://www.securityweek.com/dos-vulnerabilities-impact-linux-kernel
A JavaScript library that scores over two million downloads every week has been injected with malicious code for stealing coins from a cryptocurrency wallet.
The team that develops the Apache Struts framework is alerting users of a critical vulnerability that could allow remote code execution attacks. The Apache Foundation urged developers to update a key component of the framework in order to patch the flaw in an alert posted Monday.
https://www.cyberscoop.com/apache-remote-code-execution-flaw-november-2018/
Microsoft announced today that Windows Defender is the first antivirus to gain the ability to run inside a sandbox environment.
https://www.zdnet.com/article/windows-defender-becomes-first-antivirus-to-run-inside-a-sandbox/
Linux and BSD variants that employ the popular X.Org Server package --almost all do-- are vulnerable to a new vulnerability disclosed on Thursday.
https://www.zdnet.com/article/new-security-flaw-impacts-most-linux-and-bsd-distros/
Qualys has disclosed the details of an integer overflow vulnerability in the Linux kernel that can be exploited by a local attacker for privilege escalation. The flaw, dubbed "Mutagen Astronomy," affects certain versions of the Red Hat, CentOS and Debian distributions.
https://www.securityweek.com/linux-kernel-vulnerability-affects-red-hat-centos-debian
We've seen quite a few articles out there telling you to beware if you use the Safari browser, because attackers can spoof URLs!
The monthly Microsoft security updates --known as the Patch Tuesday updates-- are out, and this month, the OS maker has fixed 62 security flaws, including a recent zero-day vulnerability that was dumped on Twitter last month, and later adopted by a malware campaign.
Olle and his fellow cyber security consultant Pasi Saarinen recently discovered a new way to physically hack into PCs. According to their research, this method will work against nearly all modern computers. This includes laptops from some of the world's biggest vendors like Dell, Lenovo, and even Apple.
A new Spectre-class attack called SpectreRSB has been revealed by researchers.
https://www.zdnet.com/article/spectrersb-new-side-channel-attack-targets-cpu-components/
The CSIAC is a DoD-sponsored Center of Excellence in the fields of Cybersecurity, Software Engineering, Modeling & Simulation, and Knowledge Management & Information Sharing.Learn More
Phone: | 800-214-7921 |
Email: | info@csiac.org |
Address: | 266 Genesee St. Utica, NY 13502 |
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.