Security

WPA2 KRACK Attack Threatens All Wi-Fi Networks

UPDATE: Apple has patched iOS against the KRACK attack. More details below. UPDATE: Some companies have begun to respond to KRACK, issuing patches — or deferring action until later. We've compiled available information for updating routers in a new article. A severe flaw in the encryption protocols used by nearly all modern Wi-Fi networks could[continue...]

Bash specially-crafted environment variables code injection attack

Update 2014-09-26 12:00 UTC We have written a FAQ to address some of the more common questions seen regarding the recent bash issues. Frequently Asked Questions about the Shellshock Bash flaws Update 2014-09-26 02:20 UTC Red Hat has released patched versions of Bash that fix CVE-2014-7169.  Information regarding these updates can be found in the[continue...]

How to protect yourself from the ‘Heartbleed’ bug

Codenomicon/CNETA major new security vulnerability dubbed Heartbleed was disclosed Monday night with severe implications for the entire Web. The bug can scrape a server's memory, where sensitive user data is stored, including private data such as usernames, passwords, and credit card numbers. See also: The Heartbleed bug -- what you need to know (FAQ) It's an extremely[continue...]