vulnerability

Critics Hit Out at Cisco After Security Researcher Finds 120+ Vulnerabilities in a Single Product

A trio of critical vulnerabilities in Cisco Data Center Network Manager (DCNM) product could let hackers remotely bypass authentication and…

Hackers Welcome! US Gov’t to Demand Agencies Have White Hat-Friendly Vuln. Disclosure Policy

CISA, the US government's cybersecurity agency, has published a draft directive requiring all civilian agencies to establish a security researcher-friendly…

SAP Patches Critical Vulnerability in Diagnostic Agent

SAP has released a patch for a critical vulnerability in its SolMan Diagnostic Agent (SMDAgent), which manages the monitoring and diagnostics…

This Critical Oracle Vulnerability is Being Exploited in the Wild

Oracle has been forced to push out an emergency patch after the second critical vulnerability in Oracle WebLogic Server was…

You Can Now Auto-Update Your GitHub Repos to Avoid Code Vulnerabilities

GitHub has enabled automatic security updates for known vulnerable open source dependencies in user repositories; a feature warmly welcomed by…

IBM White Hats Helpfully Catch Security Howler in… IBM’s Own Security Hub

IBM has been forced to issue a security bulletin after its X-Force ethical hacking team found a serious issue with…

Landmark GCHQ Publication Reveals Vulnerability Disclosure Process

GCHQ and NCSC today for the first time published the decision making process they use to decide whether to retain…

Remote Code Execution Vulnerability in Gaming Platform Steam

A new report reveals a bug had existed in the gaming client, Steam for at least the past ten years…

Hackers Find 65 Bugs in Department of Defense System

A US government bug bounty programme that rewards hackers for identifying vulnerabilities in its systems this week paid out $78,650…