Cloud Providers Improving Security, But Users Need to Up Their Game
A new report from the Cloud Security Alliance (CSA) on the top threats to cloud computing suggests that service providers are improving their security. Many of today’s threats now stem…
Read MoreJIRA Misconfiguration Leaks Data of Fortune 500 Companies
A misconfiguration in the popular JIRA project management software exposed a great deal of data on hundreds of companies, security researcher Avinash Jain reveals. JIRA is used by over 135,000…
Read MoreIndustrial Giants Respond to ‘Urgent/11’ Vulnerabilities
Several major industrial and automation solutions providers have issued advisories in response to the recently disclosed Wind River VxWorks vulnerabilities dubbed Urgent/11. In late July, IoT security firm Armis disclosed…
Read MoreTTCSIRT-221.080619: TT-CSIRT Advisory – PHP Security Updates
PHP has released a security update stating that it has discovered the following issues in PHP7 – a) Bug #78256 – Heap-buffer-overflow on exif_process_user_comment. b) Bug #78222 – Heap-buffer-overflow on…
Read MoreTTCSIRT-220.080619: TT-CSIRT Advisory – Chrome Security Updates
Google has released a security update sting that it has discovered in the following vulnerabilities in Google Chrome: a) Insufficient checks on filesystem – (CVE-2019-5856). b) Insufficient filtering of Open…
Read MoreTTCSIRT-219.072519: TT-CSIRT Advisory – Apple Security Updates
Apple has released a security update stating that it has discovered the following issues in iOS ver12.4: a) A memory corruption issue where A remote attacker may be able to…
Read More