Hackers could have had an inside track on unpatched flaws in major software projects because of a critical vulnerability in Bugzilla, a system that many developers use to track and discuss bugs in their code.
In a gambit aimed at driving manufacturers to beef up protections for USB flash drive firmware, two security researchers have released a collection of tools that can be used to turn those drives into silent malware installers.
FireEye has detected Shellshock attacks against network-attached storage devices made by Taipei-based QNAP and used by universities and research institutes in Korea, Japan and the U.S.
The Xen Project has revealed the details of a serious vulnerability in the Xen hypervisor that could put the security of many virtualized servers at risk.
The Joomla project pushed out new updates for its popular content management system Wednesday after a glitch was found in the high-priority security patches it released a day before.
Virtual private network servers based on OpenVPN might be vulnerable to remote code execution attacks through Shellshock and other recent flaws that affect the Bash Unix shell.
Google has tripled its maximum reward for finding flaws in its software to US$15,000, a figure the company hopes will deter independent researchers from selling their information on shady markets.
Cisco Systems and Oracle are hard at work identifying networking and other products in their portfolios that are affected by the critical Shellshock vulnerability.
China has effectively cleared the iPhone 6 for sale in the country, granting the product a license, but not before a government regulator demanded Apple make some security changes in the iOS operating system to fix suspected flaws in the software.
Apple released a patch Monday for Shellshock, a serious software vulnerability disclosed last week, although the company had said it posed no risk to most users.
The cybercriminals behind the CryptoWall ransomware threat have stepped up their game and are digitally signing new samples before using them in attacks in an attempt to bypass antivirus detection.
System administrators who spent last week making sure their computers are patched against Shellshock, a critical vulnerability in the Bash Unix command-line interpreter, will have to install a new patch that addresses additional attack vectors.
Apple's OS X is vulnerable to the Shellshock bug, but it's not that easy for attackers to take advantage of it, according to Intego, which specializes in security software for the operating system.
A long-standing vulnerability unearthed in the GNU Bash software, nicknamed Shellshock, has disrupted the daily activities of the Linux system administrator community, as Linux distributors, cloud vendors and end users grapple to understand the full ...
Apple's iOS 8 addresses a serious weakness that could allow attackers to hijack the wireless network authentication of Apple devices and gain access to enterprise networks.
Most Popular Reviews
- 1 Google Pixel XL full, in-depth smartphone review: Phones just got smarter
- 2 Sony Xperia XZ review: turbo-charged last-gen phone
- 3 Hisense Series 7 ULED 4K UHD TV review
- 4 Sony X9300D and X8500D UHD 4K TV review
- 5 Moto X Force review: Leading features from a mid-range phone
Join the PC World newsletter!
Latest News Articles
- DDoS attacks from webcams, routers hit Singapore's StarHub
- Emergency Flash Player patch fixes zero-day critical flaw
- Attackers are now abusing exposed LDAP servers to amplify DDoS attacks
- Google Fiber puts expansion plans on hold to review strategy
- Apple iPhone 7 Plus review: including Portrait Mode
GGG Evaluation Team
First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.
- Google Pixel XL full, in-depth smartphone review: The new best Android phone
- Japan Robot, gadget and car expo slideshow
- Panasonic DX900U UHD 4K smart TV review: Best all-round TV ever?
- What's the difference between an Intel Core i3, i5 and i7?
- Laser vs. inkjet printers: which is better?
- CCCX Performance & Insights AnalystNSW
- TPProject Manager - ApplicationsQLD
- FTData ScientistSA
- FTFrontend DeveloperNSW
- FTEnterprise Database Manager - Defence - Permanent - Sydney CBDNSW
- FTERP Support ConsultantQLD
- FTMobile Delivery Manager / Studio LeadNSW
- FTMicrosoft Dynamics AX Functional Consultant Advanced Warehouse ManagementVIC
- CCContract Analyst Programmer (J2EE/Oracle/SQL) 161018/AP/812Asia
- CCProject Manager - DigitisationQLD
- CCSoftware Engineer- Linux and DevOpsNSW
- FTERP Data Migration ConsultantNSW
- FTSystem Engineer l Applications & SOE PackagersNSW
- CCBusiness Analyst- (MQC, QTP, BPMN, Visio or System Architect;NSW
- TPICT Security SpecialistQLD
- FTMicrosoft Dynamics AX Technical ArchitectWA
- FTNetwork Support SpecialistACT
- FTNetwork Specialist - Palo Alto FirewallsVIC
- CCTesting Business Analyst (Gold Coast based)QLD
- FTMicrosoft Dynamics AX Functional Consultant Advanced Warehouse ManagementNSW
- CCSenior Digital BA (iOS / Android)NSW
- FTMicrosoft Dynamics AX Technical ArchitectQLD
- TPSenior Analyst|Progress ProgrammerQLD
- FTTest LeadQLD
- FTMicrosoft Dynamics AX Manufacturing ConsultantSA