WhatsApp has patched a vulnerability that allowed attackers to install spyware on victims’ phones.
Github and Bitbucket tokens for Docker autobuilds are also impacted.
Millions of security cameras, baby monitors and “smart” doorbells are open to hijack – and no solution is currently available.
At the Security Analyst Summit, Threatpost editor Tara Seals catches up with Joe FitzPatrick, researcher with Securing Hardware, to discuss supply chain threats.
The “Kitten of Doom” denial-of-service attack is easy to carry out.
Virtual machines that use AMD’s hardware-based encryption scheme are vulnerable to attacks that can extract the full contents of their main memory – in plaintext.