Apple Intelligence Could Introduce Device Security Risks
The company focused heavily on data and system security in the announcement of its generative AI platform, Apple Intelligence, but…
Critical WordPress Plug-in RCE Bug Exposes Reams of Websites to Takeover
Attackers can inject and execute arbitrary PHP code using a flaw in Backup Migration, which has been downloaded more than…
SecTor 2023: Full Schedule Programming for Toronto Event
PRESS RELEASE TORONTO — (BUSINESS WIRE) — SecTor, Canada’s largest cybersecurity conference, today announced its...
From Ferrari to Ford, Cybersecurity Bugs Plague Automotive Safety
Security vulnerabilities plague automakers, and as vehicles become more connected, a more proactive stance on cybersecurity will be required —…
Meta Ponies Up $300K Bounty for Zero-Click Mobile RCE Bugs in Facebook
Facebook's parent company has also expanded bug-bounty payouts to include Oculus and other "metaverse" gadgets for AR/VR.
Why Bug-Bounty Programs Are Failing Everyone
In a Black Hat USA talk, Katie Moussouris will discuss why bug-bounty programs are failing in their goals, and what…
Google Offers $1.5M Bug Bounty for Android 13 Beta
The security vulnerability payout set bug hunters rejoicing, but claiming the reward is much, much easier said than done.
Companies Going to Greater Lengths to Hire Cybersecurity Staff
The cybersecurity market is red-hot. But with so many still-unfilled positions, companies may be more willing to bend or break…
US Search for Vulnerabilities Drives 10x Increase in Bug Reports
Cross-site scripting and broken access controls continued to be the top classes of vulnerabilities researchers discovered, according to Bugcrowd's annual…
Original Fix for Log4j Flaw Fails to Fully Protect Against DoS Attacks, Data Theft
Organizations should upgrade ASAP to new version of logging framework released Tuesday by the Apache Foundation, security experts say.