Security Alerts & News
by Tymoteusz A. Góral

History
#426 OpenSSH with X11Forwarding enabled should heed recent security update
The latest version of the open source implementation of the SSH protocol patches a flaw that exposes it to command injection attacks. The open source project cautions that OpenSSH disabled X11Forwarding long ago—it is no longer the default configuration—thus limiting the risk to most users. But some vendors—OpenSSH singled out Red Hat in particular—turn X11Forwarding on and those versions prior to 7.2p2 with X11Forwarding enabled are at risk.
Read more
#433 Why are so few Android phones encrypted, and should you encrypt yours?
#432 VMware patches XSS vulnerabilities in vRealize products
#431 To bypass code-signing checks, malware gang Suckfly steals lots of certificates
#430 Smart Reply for Google's Inbox Gmail app comes to the web
#429 Special antivirus tools put to the test: performance of system rescuers in an emergency
#428 Exploit Kits in 2015: Scale and Distribution
#427 Amazon Web Services (AWS) makes Database Migration Service available to all customers
#426 OpenSSH with X11Forwarding enabled should heed recent security update
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12