responsible disclosure Archives

FortiJump: Yet Another Critical Fortinet 0-Day RCE

Richi Jennings | October 23, 2024 | Carl Windsor, CVE-2024-47575, FG-IR-24-423, fgfmsd, Fortigate, FortiGate devices, FortiGate Flaw, FortiJump, Fortinet, Inc., responsible disclosure, responsible disclosure program, SB Blogwatch, transparency

FortiFAIL: Remote code execution vulnerability still not acknowledged by Fortinet after 10+  days’ exploitation ...

Security Boulevard

Xiaomi and WPS Vulnerabilities: File Overwrite Risks Alert

Wajahat Raja | May 16, 2024 | android, app-security, Cybersecurity News, Dirty Stream Attack, file overwrite, Google Guidance, Google Play Store, Microsoft Threat Intelligence, Mobile Security, patch management, responsible disclosure, Security Exploits, Vulnerabilities, WPS Office, Xiaomi

In the digital realm, security is paramount, especially when it comes to the applications we use daily. Recently, concerns have surfaced regarding vulnerabilities in popular Android applications available on the Google Play ...

TuxCare

Securing Networks: Addressing pfSense Vulnerabilities

In recent findings by Sonar, critical security vulnerabilities have emerged within the widely-used open-source Netgate pfSense firewall solution, potentially exposing susceptible appliances to unauthorized command execution. These pfSense vulnerabilities, comprising two reflected ...

TuxCare

Google Pixel Can be Unlocked via SIM Swap (Other Android Phones, Too)

Richi Jennings | November 15, 2022 | android, AOSP, Bug Bounties, bug bounty, bug bounty program, CVE-2022-20465, David Schütz, Google Pixel, lockscreen, puk, responsible disclosure, SB Blogwatch, Sounds like an excellent exploit designed by Google to assist law enforcement, Vulnerability Disclosure

A Hungarian researcher found a nasty Android security bug: Malicious people can unlock your phone ...

Security Boulevard

BlackBerry QNX Vulnerability Highlights Lurking Issues with IOT Security

Yossi Naar | August 18, 2021 | Automotive, BadAlloc, blackberry, BlackBerry QNX, Embedded Systems, enterprise security, Exploits, healthcare, Internet, Internet of things, iot, Real-Time Operating System, Remote Code Execution, responsible disclosure, risk management, Software Security, Vulnerabilities, vulnerability

BlackBerry revealed that its QNX operating system is vulnerable to the BadAlloc flaw revealed earlier this year. QNX is an embedded systems operating system that can be found in hundreds of millions ...

Blog

Feds Propose ‘911’ Emergency Call for Reporting Security Flaws; Experts Warn It’s Easier Said Than Done

Filip Truta | September 4, 2020 | 9/11, bug bounty, bug bounty program, cisa, Department of Homeland Security, directive, Federal, government, Industry News, responsible disclosure, vulnerability, Vulnerability Disclosure

CISA drafts directive to create a vulnerability disclosure policy for government websites and apps Agency seeks to centralize the effort via a standard vulnerability disclosure platform service next spring Cybersecurity veteran Katie ...

HOTforSecurity

AMD downplays CPU flaw discovery, says hackers would need admin rights anyway

Filip Truta | March 21, 2018 | AMD, AMD processor, cpu vulnerability, Industry News, processor vulnerability, responsible disclosure, responsible disclosure program, security bloggers network

Semiconductor giant AMD said today that attackers wouldn’t likely abuse the vulnerabilities recently found in its products: they would need administrative access, and that kind of access would allow for far more ...

HOTforSecurity

Responsible Disclosure: Your Security Stance for Ethical Hackers

Michael Boelen | August 27, 2013 | responsible disclosure

Vulnerabilities and misconfigured systems are common examples why a company would obtain a spot in the news headlines. While some big companies are showing off their bounty programs, others provide their security ...

The Next CISO