Project Zero researchers see promising trends in vulnerability fixes

Written by AJ Vicens Feb 10, 2022 | CYBERSCOOP Big tech vendors generally are remediating serious bugs faster than they were three years ago, according to a new report from…

Get patching: SonicWall warns of vulnerabilties in SMA 100 series remote access devices

SonicWall is warning customers to apply firmware updates to its SMA 100 Series appliances for remote access from mobile devices, in order to patch vulnerabilities of critical and medium severity. …

Software Vulnerabilities Up by 20% in 2021

Software Vulnerabilities Up by 20% in 2021 Software vulnerabilities increased by 20% in 2021 compared with 2020, according to a new report by HackerOne. The bug bounty platform said its hackers had uncovered…

Sky Slow to Fix Bug in Routers

Sky Slow to Fix Bug in Routers Entertainment company Sky took more than 17 months to fix a security flaw that impacted roughly six million routers belonging to its customers. …

UK Spooks Handled Record Number of Cyber-Incidents Last Year

UK Spooks Handled Record Number of Cyber-Incidents Last Year The UK’s National Cyber Security Centre (NCSC) has hailed its world-beating cybersecurity expertise after handling hundreds of incidents and disrupting millions…

Security company faces backlash for waiting 12 months to disclose Palo Alto 0-day

There has been considerable debate within the cybersecurity community about Randori, a security firm that waited one year before disclosing a critical buffer overflow bug it discovered in Palo Alto…

The IoT is getting a lot bigger, but security is still getting left behind

Four out of five Internet of Things (IoT) device manufacturers are failing basic cybersecurity practices by not providing a way for people to disclose security vulnerabilities in their products –…

CISA tells agencies to fix hundreds of software flaws, prep for future vulnerabilities

Written by Tim Starks Nov 3, 2021 | CYBERSCOOP The Cybersecurity and Infrastructure Security Agency is ordering federal agencies to patch nearly 300 known, exploited vulnerabilities in a directive published…