Security Alerts & News
by Tymoteusz A. Góral

#591 Broken IBM Java patch prompts another disclosure
For the second time in two weeks, researchers have discovered a three-year-old broken patch for a vulnerability in IBM’s Java SDK implementation. The flaw allows for an attacker to execute code outside the Java sandbox, and still affects current versions of IBM SDK, 7 and 8, released in January.

Details of the vulnerability and proof-of-concept code were disclosed by Polish consultancy Security Explorations. The organization announced, on March 7, a change in internal policy whereby the company will disclose bugs if the vendor’s patch is broken or incomplete.
Read more
#592 Underwriters Labs refuses to share new IoT cybersecurity standard
#591 Broken IBM Java patch prompts another disclosure
#590 Qbot malware morphs quickly to evade detection
#589 Cisco report: Cybersecurity to help businesses deliver digital growth strategies
#588 Let's Encrypt free security certificate program leaves beta
#587 The future of Firefox is … Chrome
#586 Jigsaw ransomware decrypted: Will delete your files until you pay the Ransom
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12