Blogs about: Vulnerabilities
Featured Blog
Researchers Raise Alarm Over New Iteration of Coreflood Botnet
The seven-year-old Coreflood botnet is quietly stealing thousands of passwords from corporate users and other large organizations, thanks to recent enhancements that allow it to spread like a worm, re… more »
Smokey's Security Weblog
Researchers Raise Alarm Over New Iteration of Coreflood Botnet
Smokey wrote 14 hours ago: The seven-year-old Coreflood botnet is quietly stealing thousands of passwords from corporate users … more »
DNS Vulnerability Notes, part 2
— 1 comment
Clay wrote 4 days ago: Looks like the details of the Kaminsky DNS vulnerability (intended to be released in mid August) hav … more »
Crippling Crypto: The Debian OpenSSL Debacle
Dino Dai Zovi wrote 5 days ago: This weekend at The Last HOPE, Jacob Appelbaum, Karsten Nohl and I gave the following presentation o … more »
Microsoft Security Bulletin MS08-033 (Critical): Vulnerabilities in DirectX Could Allow Remote Code Execution (951698)
Smokey wrote 1 week ago: Published: June 10, 2008 | Updated: July 16, 2008 This security update resolves two privately report … more »
Peng's links for Thursday, 17 July
— 2 comments
Peng wrote 1 week ago: Planet Mozilla: Google calendar may display real names of other Google mail users. I meant to post … more »
Peng's links for Wednesday, 16 July
Peng wrote 1 week ago: Ben Collins: Canonical and the Linux kernel. There’s an incorrect belief that Canonical, pare … more »
Pwnie Award Nominations Close Today
Dino Dai Zovi wrote 1 week ago: This is just a friendly reminder that the nominations for the Pwnie Awards close today. You can … more »
DNS Vulnerability Notes
Clay wrote 1 week ago: I’ve been experimenting with various DNS implementations this week since the release of the la … more »
security holes
whitenoise wrote 1 week ago: This XKCD strip is…simply…fantastic!! … more »
heise SSL Guardian: protection against unsafe SSL certificates
Smokey wrote 2 weeks ago: Https connections are often used to transfer important data, such as passwords, PINs, or credit card … more »
What is a vulnerability?
jatnikonm wrote 2 weeks ago: A vulnerability is a hole or a weakness in the application, which can be a design flaw or an impleme … more »
Highly critical vulnerabilities reported in vBulletin
Smokey wrote 2 weeks ago: Some highly critical vulnerabilities have been reported in vBulletin, which can be exploited by mali … more »
Dan Kaminsky Disqualified from Most Overhyped Bug Pwnie
— 10 comments
Dino Dai Zovi wrote 2 weeks ago: I can be pretty skeptical and cynical at times (part of what drives my interest in security) and I a … more »
Microsoft patch cause major 'net issues for users of ZoneAlarm firewalls
— 5 comments
Peng wrote 2 weeks ago: I usually don’t worry about news from Microsoft, but this morning I saw a note on mozillaZine … more »
Apple updates Leopard to 10.5.4
Smokey wrote 2 weeks ago: Apple has released Mac OS X 10.5.4, the fourth update to Leopard since it was released last October. … more »
ARDAgent.app Vulnerability Analysis
— 3 comments
Dino Dai Zovi wrote 3 weeks ago: Apple recently released Mac OS X 10.5.4 with accompanying security updates for 25 vulnerabilities. … more »
Microsoft Security Bulletin Advance Notification for July 2008
Smokey wrote 3 weeks ago: Published: July 3, 2008 Microsoft Security Bulletin Advance Notification issued: July 3, 2008 Micros … more »
Opera 9.51 Released (Recommended security and stability upgrade)
Smokey wrote 3 weeks ago: -July 3, 2008: Opera 9.51 released, this is a recommended security and stability upgrade. Several hi … more »
Peng's links for Saturday, 5 July
Peng wrote 3 weeks ago: It’s Saturday? I woke up this am and after the holiday yesterday (with the busses in town runn … more »
Have your say. Start a blog.
See our free features »
An 
Thingamajig
