Categories: Personal Tags: tootroot Tags: mastodon Tags: server Tags: patch Tags: update Tags: CVE Tags: flaw Tags: vulnerability Tags: social media Tags: network Tags: networking We take a look at a collection of issues (now patched) which were affecting Mastodon servers. It’s time to apply the fix for TootRoot. |
The post “TootRoot” Mastodon vulnerabilities fixed: Admins, patch now! appeared first on Malwarebytes Labs.
Read moreCategories: Business Tags: camera Tags: CCTV Tags: surveillance Tags: council Tags: organisation Tags: government Tags: local Tags: china Tags: vulnerability Tags: flaw Tags: fix Tags: patch Tags: update We take a look at a debate over who is responsible for ensuring surveillance systems are as secure as they can be. |
The post Surveillance camera insecurities argument comes to one inevitable conclusion: Always update appeared first on Malwarebytes Labs.
Read moreCategories: News Tags: VMware Tags: workstation Tags: fusion Tags: virtual machine Tags: SCSI Tags: DVD Tags: CD Tags: virtualisation Tags: exploit Tags: vulnerability Tags: flaw Tags: CVE VMWare has released fixes and mitigations for three Important and one Critical vulnerability in its Fusion and Workstation software. |
The post Update now: Critical flaw in VMWare Fusion and VMWare Workstation appeared first on Malwarebytes Labs.
Read moreCategories: News Tags: lego Tags: bricklink Tags: cross site scripting Tags: bug Tags: flaw We take a look at how Lego’s Bricklink service was potentially vulnerable to certain types of XSS attack. |
The post Lego’s Bricklink steps on cross site scripting blocks appeared first on Malwarebytes Labs.
Read more
Credit to Author: Danny Bradbury| Date: Tue, 17 Mar 2020 12:33:43 +0000
Slack has fixed a bug that allowed attackers to hijack user accounts by tampering with their HTTP sessions.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/i-F9hS91EoQ” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: John E Dunn| Date: Mon, 16 Mar 2020 11:58:56 +0000
What’s the difference between a scheduled security update and one that’s out-of-band? In this case, it’s two days.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/OqgpMudTrew” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: John E Dunn| Date: Tue, 14 Jan 2020 11:41:45 +0000
A fortnight in to 2020 and we have the first security flaw to be given its own name: Cable Haunt – complete with eye-catching logo.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/xgn6q9BSap4″ height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Danny Bradbury| Date: Fri, 15 Nov 2019 13:27:40 +0000
A serious Wi-Fi flaw shows how Linux handles security in plain sight.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/k8HeNuageMA” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Danny Bradbury| Date: Mon, 19 Aug 2019 11:58:14 +0000
Netflix has identified several denial of service (DoS) flaws in HTTP/2, a popular network protocol that underpins large parts of the web. Exploiting them could bring servers grinding to a halt.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/lnFwWgp85fY” height=”1″ width=”1″ alt=””/>
Read more