Mary Queen of Scots Letters Decrypted
This is a neat piece of historical research. The team of computer scientist George Lasry, pianist Norbert Biermann and astrophysicist Satoshi Tomokiyo—all keen cryptographers—initially thought...
Smashing Security podcast #308: Jail after VPN fail, criminal messaging apps, and wolf-crying watches
When Ubiquiti suffered a hack the world assumed it was just a regular security breach, but the truth was much stranger... why are police happy...
Trio Arrested in COVID PPE Fraud Probe
UK company set up to illegally profit from trade in protective equipment Read More
How to unleash the power of an effective security engineering team
Security teams are comprised primarily of operations, compliance, and policy-related roles. Security engineering teams, on the other hand, are builders. They build services, automate processes,...
Yes, CISOs should be concerned about the types of data spy balloons can intercept
The recent kerfuffle surrounding the Chinese surveillance balloon that sailed above Canada and the United States before meeting its demise off the southeastern coast of...
New Info-Stealer Discovered as Russia Prepares Fresh Offensive
Ukraine braced for more critical infrastructure attacks Read More
qt5-qtbase-5.15.8-5.fc37 qt6-qtbase-6.4.2-4.fc37
FEDORA-2023-f2965f082c Packages in this update: qt5-qtbase-5.15.8-5.fc37 qt6-qtbase-6.4.2-4.fc37 Update description: Fix a possible DOS involving the Qt SQL ODBC driver plugin. Read More
ZDI-23-212: Open Design Alliance (ODA) Drawing SDK DWG File Parsing Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance (ODA) Drawing SDK. User interaction is required to exploit...
ZDI-23-119: Oracle VirtualBox Teleporter Improper Error Handling Authentication Bypass Vulnerability
This vulnerability allows remote attackers to bypass authentication on affected installations of Oracle VirtualBox. Authentication is not required to exploit this vulnerability. Read More
ZDI-23-120: Open Design Alliance (ODA) Drawing SDK DWG File Parsing Memory Corruption Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance (ODA) Drawing SDK. User interaction is required to exploit...