Critical Vulnerability in Open SSL - Cyber Security News

Read Time:28 Second

There are no details yet, but it’s really important that you patch Open SSL 3.x when the new version comes out on Tuesday.

How bad is “Critical”? According to OpenSSL, an issue of critical severity affects common configurations and is also likely exploitable.

It’s likely to be abused to disclose server memory contents, and potentially reveal user details, and could be easily exploited remotely to compromise server private keys or execute code execute remotely. In other words, pretty much everything you don’t want happening on your production systems.

Slashdot thread.

More Stories

Scams Based on Fake Google Emails

Scammers are hacking Google Forms to send email to victims that come from google.com. Brian Krebs reports on the effects....

December 26, 2024

Infostealers Dominate as Lumma Stealer Detections Soar by Almost 400%

The vacuum left by RedLine’s takedown will likely lead to a bump in the activity of other a infostealers Read...

December 26, 2024

The AI Fix #30: ChatGPT reveals the devastating truth about Santa (Merry Christmas!)

In episode 30 of The AI Fix, AIs are caught lying to avoid being turned off, Apple’s AI flubs a...

December 24, 2024

US and Japan Blame North Korea for $308m Crypto Heist

A joint US-Japan alert attributed North Korean hackers with a May 2024 crypto heist worth $308m from Japan-based company DMM...

December 24, 2024

Spyware Maker NSO Group Found Liable for Hacking WhatsApp

A judge has found that NSO Group, maker of the Pegasus spyware, has violated the US Computer Fraud and Abuse...

December 24, 2024

Spyware Maker NSO Group Liable for WhatsApp User Hacks

A US judge has ruled in favor of WhatsApp in a long-running case against commercial spyware-maker NSO Group Read More

December 24, 2024