The UN Human Rights Council on Thursday decided to appoint an investigator to look into violations of digital privacy rights, following revelations of large-scale cyber-snooping by Washington and others.
The council, which counts the United States among its 47 members, adopted by consensus the resolution establishing the three-year watchdog position.
A critical vulnerability in a popular hotel and convention center Internet gateway from AntLabs called InnGate has been patched. The flaw allows attackers read and write access to the devices from the Internet.
Researchers at High-Tech Bridge have uncovered multiple vulnerabilities in the Web interface of pfSense that can be exploited to perform cross-site scripting (XSS) and cross-site request forgery (CSRF) attacks.
PfSense is an open source firewall/router software distribution based on the FreeBSD operating system.
Students from M.I.T. have devised a new way to scour raw code for integer overflows.
PhishMe, a company that helps organizations teach security awareness by educating employees on how to identify Phishing attacks, today announced it has raised $13 million in Series B funding.
Yahoo received nearly 5,000 requests for user data from the United States government in the last six months of 2014 and disclosed some content in nearly 25 percent of those cases. The company said in its new transparency report that it received between 0-999 National Security Letters from the U.S. government, too. The latest report from […]
Cisco released its semiannual set of patches for its Cisco IOS router and switch operating system. The patches address 16 vulnerabilities.
Researchers at Imperva’s Application Defense Center have found a way to leverage a 13-year-old vulnerability in the RC4 cryptographic algorithm to recover partial information from SSL/TLS-protected communications.
The catch phrase “intelligence-driven security” has never sat particularly well with me. Those who have read my pieces or have heard me speak may find this statement a bit surprising. The regular reader knows that I believe strongly in intelligence as a component of a successful and mature security program. Among its many virtues, intelligence improves detection, informs decision-making, and accelerates response.