HTTP Parameter Pollution
HTTP Parameter Pollution is one of those vulnerabilities that were around for a very long time, but has been identified only in the recent past. HTTP Parameter Pollution was first…
Google Patches Second "Same Origin Policy" Bypass Flaw in Android Browser
A Same Origin Policy (SOP) bypass vulnerability has been identified in the Android browser installed by default on versions of the operating system prior to 4.4, a researcher reve…
Reddit Helps Botnet Recruit 17,000 Macs
Using a Mac and browsing Reddit are pretty safe activities, as far as online security goes, but "pretty safe" does not equal "riskless." A new bit of Mac-centric malware has infec…
Serious Hypervisor Bug Fix Causes Unexpected Cloud Downtime
The Xen Project published a security advisory yesterday about a critical vulnerability in its virtual machine and hypervisor systems that could expose public cloud servers to atta…
Authentication Bypass Vulnerability Affects 22 Schneider Electric Products
The U.S. Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) published an advisory this week to warn organizations of a directory traversal vulnerability affecting…