Latest Vulnerability Stories

Computer security experts have discovered a new vulnerability in Apple's mobile Safari web browser that can make it look like a user is visiting one website when, in actuality, they are looking at a page located elsewhere. According to Andrew Webster of The Verge, the security flaw is present in Safari for iOS 5.1 and was discovered earlier this month by members of the Germany security firm MajorSecurity. The vulnerability "makes it possible to put a spoof URL in the address bar to trick...

ARMONK, N.Y., March 22, 2012 /PRNewswire/ -- IBM (NYSE: IBM) today released the results of its X-Force 2011 Trend and Risk Report, which shows surprising improvements in several areas of Internet security such as a reduction in application security vulnerabilities, exploit code and spam. As a result, the report suggests attackers today are being forced to rethink their tactics by targeting more niche IT loopholes and emerging technologies such as social networks and mobile devices....

MOUNTAIN VIEW, Calif., March 21, 2012 /PRNewswire/ -- Based on its recent analysis of the Testing-as-a-Service (TaaS) market, Frost & Sullivan recognizes Codenomicon Ltd. with the 2012 North American Frost & Sullivan Award for Customer Value Enhancement for the launch of the pioneering Fuzz-o-Matic testing platform in the TaaS market. Without requiring access to source code, Fuzz-o-Matic allows anybody to test any vendor's software. Fuzz-o-Matic stress-tests...

UPDATED: Firefox was not compromised in last year’s contest, as confirmed in this blog post. Many thanks to the Mozilla Team for bring this to our attention. ------------- At the 2011 CanSecWest Pwn2Own hacker contest, Google Chrome was the one of the browsers that challengers could not break into. Fast forward to the 2012 challenge, and Chrome was the first to fall, thanks to a team of French hackers who found a previously unknown vulnerability in the software. VUPEN, a...

OMAHA, Neb., Feb. 28, 2012 /PRNewswire/ -- Solutionary, the leading pure-play managed security services provider (MSSP), today announced the availability of version 4 of ActiveGuard® Vulnerability Lifecycle Management. The latest version delivers further enhancements to the vulnerability remediation workflow process and automatic threat correlation capabilities. ActiveGuard Vulnerability Lifecycle Management enables clients to seamlessly manage the vulnerability remediation...

SAN FRANCISCO, Feb. 27, 2012 /PRNewswire/ -- Coverity, the leader in development testing, announced today that it will demonstrate its solution for finding and fixing security vulnerabilities during development at RSA Conference 2012, Booth #555. Coverity helps development organizations find and fix software defects that can lead to catastrophic failures and security vulnerabilities as code is written. By automating code testing in development with Coverity, security...

Malicious code targeting a newly identified vulnerability in Symantec's pcAnywhere remote control product has been published online, exposing users to potential attacks that disrupt the software's capabilities. The disclosure comes just one month after Symantec made the unprecedented move of advising pcAnywhere users to disable or uninstall the program because hackers had obtained the remote access software's source code.   Days later, Symantec said it had patched all the known...

APEX, N.C., Jan. 27, 2012 /PRNewswire/ -- "THE WORLD HAS CHANGED" emphasized TigerSwan CEO and former Delta Force Officer, James Reese, to a large gathering of corporate executives. "From data privacy breaches to cyber espionage, corporations combat crises on a daily basis," said Reese. "As a result, detecting, mitigating and managing these threats are a necessity." As companies expand internationally, more CEO's and Corporate Risk Boards seek vulnerability management...

SAN FRANCISCO, Jan. 24, 2012 /PRNewswire/ -- Coverity, the leader in development testing, announced today the formation of the Coverity Security Research Laboratory (SRL) as part of the Office of the Chief Technology Officer (CTO). The Coverity SRL will remain on the cutting edge of security vulnerability research, investigating and uncovering the root cause of new and existing vulnerability-causing defects that exist in software code. This knowledge will be built into the...

McCann E-Investigation’s (McCann EI) Dallas Computer Forensics division has seen a significant increase in demand for digital debugging services. To meet this demand, McCann E-Investigations Dallas Computer Forensics employs the industry’s highly regarded tools – QualysGuard and Nessus Vulnerability Scanner. Dallas, TX (PRWEB) January 23, 2012 McCann E-Investigations (McCann EI), a Texas-based computer forensics and private investigative firm expands its computer forensics...