New Electronics

Code injection: a common vulnerability

As the Internet of Things develops, embedded devices are being deployed in environments where attackers can take advantage of source code level security vulnerabilities. Embedded software developers ...
ITWire

iTWire - MoAB spots another format string vulnerability

Mac OS X's Installer utility has a format string bug that can be triggered by maliciously crafted package file names, according to the Month of Apple Bugs project. "This is another issue related with ...
Dark Reading

Palo Alto Networks Does Not Fully Address Vulnerability in GlobalProtect SSL VPN Solution

Palo Alto Networks has published an advisory about its Palo Alto GlobalProtect SSL VPN solution which is used by many organizations. The advisory was a response to research carried out by Orange Tsai ...
heise online

Critical Fortinet vulnerability under attack

The US cyber security authority CISA warns that older vulnerabilities in several Fortinet products are currently under attack. It has included the vulnerability in the Known Exploited Vulnerabilities ...