CVE-2016-1239
duck before 0.10 did not properly handle loading of untrusted code from the current directory. Read More
“Who dropped the DB?” Find out with Teleport Database Access
Graham Cluley Security News is sponsored this week by the folks at Teleport. Thanks to the great team there for their support! You’re woken up...
Wiper malware hit Ukrainian organizations
UPDATE January 19: Updated Coverage section about the third malware that FortiGuard Labs has confirmed as a wiper malware..FortiGuard Labs is aware of a report...
CVE-2016-20013
sha256crypt and sha512crypt through 0.6 allow attackers to cause a denial of service (CPU consumption) because the algorithm's runtime is proportional to the square of...
DSA-5083 webkit2gtk – security update
The following vulnerabilities have been discovered in the WebKitGTK web engine: Read More
DSA-5084 wpewebkit – security update
The following vulnerabilities have been discovered in the WPE WebKit web engine: Read More
CVE-2017-0371
MediaWiki before 1.23.16, 1.24.x through 1.27.x before 1.27.2, and 1.28.x before 1.28.1 allows remote attackers to discover the IP addresses of Wiki visitors via a...
Friday Squid Blogging: South American Squid Stocks Threatened by Chinese Fishing
There’s a lot of fishing going on: The number of Chinese-flagged vessels in the south Pacific has surged 13-fold from 54 active vessels in 2009...