Microsoft says it's prepping a patch to fix a memory corruption flaw in multiple versions of Internet Explorer that is being exploited by in-the-wild attackers. In a security alert issued on Friday, Microsoft says the vulnerability - designated CVE-2020-0674 - is present in IE9 running on Windows Server 2008, IE10 running on Windows Server 2012 ... Read More »
Users of GnuPG, OpenSSL and Git could be in danger from an attack that’s practical for ordinary attackers to carry out. A proof-of-concept attack has been pioneered that “fully and practically” breaks the Secure Hash Algorithm 1 (SHA-1) code-signing encryption, used by legacy computers to sign the certificates that authenticate ... Read More »
The U.S. Department of Homeland Security is urging Firefox users to update their browser to protect against a critical vulnerability that is under active attack.The vulnerability could allow an attacker to take control of an affected system: Mozilla has released security updates to address a vulnerability in Firefox and Firefox ESR. An attacker ... Read More »