Critical Vulnerabilities in Axis Cameras

If you have Axis cameras, please update the firmware.  Vulnerabilities exist in over 390 models.


MyHeritage DNA Testing Company Hacked

Email addresses and password hashes from MyHeritage were found in the wild, all users should change their password.  No other information is believed to be compromised.


More CPU Side Channel Vulnerabilities aka Meltdown Spectre Variants

Intel (along with Microsoft and US-CERT) has released details on more vulnerabilities in their CPUs.  Patches to be released via regular channels (Patch Tuesday).


Chrome Loses Green Secure Site Indicator in September

Google is removing the green secure icon in the url bar in favor of a red insecure icon for all non https connections.


“EFAIL” Vulnerability in PGP,S/MIME Allows Decryption of Protected Email

OpenPGP and S/MIME can no longer be considered secure for encrypting emails.  The vulnerability exploits HTML functionality within modern email clients to allow decryption. 


Microsoft Patch Tuesday April 2018

Microsoft has released patches for 67 flaws, upgrade soon.  Adobe has also patched Flash.


Change Your Twitter Password Now…

A flaw in a script caused passwords to be written in plain text for some users.  Twitter wants you to change your password.


Spectre NG – Even More Dangerous

Eight new flaws  in Intel (possibly AMD) CPUs with the worst allowing easy escalation from a virtual machine to the hosting environment.


Another Drupal Flaw Being Exploited

The Drupal team released patch (in addition to the critical patch last month) and within 5 hours the flaw was being actively exploited.  If you use Drupal, patch now.


“DoubleKill” Internet Explorer Critical Vulnerability

A Chinese security group, Qihoo 360,  has discovered malware using a 0-day flaw in Internet Explorer’s engine.  This flaw can be exploited in all versions of IE and any applications (Outlook) that renders HTML with IE.  Microsoft hasn’t made any comment yet.  Stop using IE until it’s patched.  Edge is not affected.