Patches

‘Distributed guessing’ attack lets hackers verify Visa card details

Armed with a card number, researchers tricked websites into helping them guess the expiry date and CVV.

Patches & updates: Latest news on cybersecurity patches, updates and bug fixes released by enterprise security vendors and researchers

The update on latest patches and bug fixes from India and around the globe for critical vulnerabilities, malware attacks, security loopholes and system improvements for information security professionals, researchers and technology leaders. 

 

 

Law enforcement shuts down xDedic marketplace for hacked servers

Cooperation among multiple agencies in the U.S. and Europe close a marketplace that sold access to servers hacked through RDP attacks.

Cisco patches serious SD-WAN software security holes

Cisco has patched security vulnerabilities in four packages of SD-WAN Solution software that address buffer overflow and other vulnerabilities.

Temporary micropatch available for zero-day Windows exploit

A publicly disclosed Windows zero-day vulnerability could allow attackers to take full control of systems once they compromise a low-privilege account. Here's a fix.

What is a CISO? Responsibilities and requirements for this vital leadership role

The chief information security officer (CISO) is the executive responsible for an organization's information and data security. Learn what it takes to land a CISO job and how to be successful in the role.

Microsoft delivers emergency patch for under-attack IE

The company issued a rare emergency security update to fix a zero-day vulnerability – reported by a Google security engineer – in the still-supported IE9, IE10 and IE11.

Indian bounty hunter exposes bug that made 400M Microsoft accounts easily hackable

A Kerala-based bug bounty hunter, Sahad NK discovered a critical vulnerability in Microsoft’s login that made it possible to hack into anyone’s MS Office and Outlook account.

Trend Micro places bets on single agent endpoint security

Trend Micro Apex One offers automated detection and response, provides actionable insights and growth opportunities for the channel. 

Instagram security bug inadvertently exposed user passwords

Instagram’s ‘Download Your Data’ tool accidentally put user credentials at risk. What’s particularly worrisome though, is the possibility of Instagram storing passwords in plain text.

Zero-day vulnerability with file-deleting capability found in Windows 10

A security researcher unearthed a zero-day vulnerability in Microsoft Windows 10. And this one goes beyond altering system files – it actually deletes them.

Cisco unearths 13 'High Impact' IOS vulnerabilities you need to patch now

Cisco has exposed 13 vulnerabilities in its IOS and IOS XE switch and router operating software that the company said should be patched as soon as possible. The vulnerabilities were detailed in Cisco’s twice-yearly dump of IOS exposures and all have a High Impact security rating and should be evaluated by users as soon as possible.