Read more about vulnerability
Bookmark and Share
  • Assume your Drupal 7 site has been compromised

    30.10.2014

    Administrators of sites that run Drupal 7, and have not yet updated to version 7.32 or have done so later than 7 hours after the public revelation of the highly critical SQL injection vulnerability (CVE-2014-3704) on October 15, are advised to consider their site as potentially compromised and proceed to fix the issue.

  • Two exploit kits prey on Flash Player flaw patched only last week

    23.10.2014

    Two exploit kits have been outfitted with the exploit for a Flash Player vulnerability that has been patched only a week ago, the researcher that goes by the handle Kafeine has shared on Tuesday.

  • Windows 0-day exploited in ongoing attacks, temporary workarounds offered

    22.10.2014

    Microsoft is warning users about a new Windows zero-day vulnerability that is being actively exploited in the wild and is primarily a risk to users on servers and workstations that open documents with embedded OLE objects.

  • Easily exploitable Drupal bug can lead to total site compromise

    16.10.2014

    Admins of sites that run Drupal 7 are advised to update to the latest version of the platform - version 7.32 - because it fixes a critical SQL injection vulnerability that can ultimately lead to site hijacking and data theft.

  • New OpenSSL updates fix POODLE, DoS bugs

    16.10.2014

    The OpenSSL Project has pushed out new releases of the popular homonymous open-source cryptographic library, which fix four serious vulnerabilities, including the POODLE (Padding Oracle On Downgraded Legacy Encryption) problem.




Spotlight

Whitepaper: Zero Trust approach to network security

Posted on 20 November 2014.  |  Zero Trust is an alternative security model that addresses the shortcomings of failing perimeter-centric strategies by removing the assumption of trust.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Mon, Nov 24th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //