May 8, 2015 New WordPress Security Release Crosses Out XSS Vulnerabilities 2 min read - A new WordPress security release is recommended for anyone running the content management platform since it addresses two critical XSS vulnerabilties.
May 4, 2015 Survey Shows Overconfidence in Ability to Detect Threats on Government Networks 2 min read - A new survey by MeriTalk reveals that many cyber pros may have an overly optimistic estimate about their ability to detect threats on government networks.
April 28, 2015 WordPress Vulnerability Lets Cybercriminals Insert JavaScript Code via Comments Field 2 min read - A researcher says cybercriminals could exploit a WordPress vulnerability that uses JavaScript in blog comments to cause cross-site scripting attacks.
Application Security April 28, 2015 Software Defenses to OWASP’s Top 10 Most Common Application Attacks 6 min read - Software developers must learn how to build security in from the ground up to defend against the most common application attacks, as determined by OWASP.
April 27, 2015 New iOS 8 Vulnerability Taps Worrisome Wi-Fi Exploit 2 min read - A new type of iOS 8 vulnerability combines WiFiGate and an SSL compromise to cripple iPhones, according to mobile security firm Skycure.
April 23, 2015 Vulnerability in Magento Could Have Exposed 200,000 E-commerce Sites to Attack 2 min read - A vulnerability in Magento — the e-commerce platform owned by eBay — was patched but could have left more than 200,000 sites exposed to cybercriminals.
Fraud Protection April 21, 2015 Taking Evasive Actions Against Cyberfraud 2 min read - Cybercriminals are investing time and effort to improve their cyberfraud techniques in order to evade detection by security researchers and solutions.
Software Vulnerabilities April 21, 2015 CVE-2015-1097: Deobfuscating iOS Kernel Pointers With an IBM X-Force-Discovered Vulnerability 4 min read - IBM's X-Force Application Security Research Team has discovered a memory disclosure vulnerability in iOS IOKit IOMobileFrameBuffer.
April 17, 2015 Dropbox Bounty: Big Bucks for Bugs? 2 min read - The new Dropbox bounty program looks to catch software vulnerabilities in their infancy by rewarding researchers. So far, payouts have no maximum.
April 17, 2015 SearchBlox Vulnerabilities Underscore the Importance of Updating Enterprise Search Tools 2 min read - A set of four SearchBlox vulnerabilities could allow cybercriminals to conduct cross-site scripting attacks and cause other potential problems.