“It’s ridiculous vendors are replying to researchers via general counsel, not bug bounty.” Source: Plain wrong: Millions of utility customers’ passwords stored in plain text
February 22, 2019
Once hailed as unhackable, blockchains are now getting hacked
More and more security holes are appearing in cryptocurrency and smart contract platforms, and some are fundamental to the way they were built. Source: Once hailed as unhackable, blockchains are now getting hacked
Passwords stored in RAM could lead to theft, but the report has to be considered in a risk-based context. Source: Severe vulnerabilities uncovered in popular password managers | ZDNet
February 21, 2019
WinRAR patched 19-year-old bug that left millions vulnerable
WinRAR gets back at us all for hitting “next time” when prompted to pay. Source: WinRAR patched 19-year-old bug that left millions vulnerable
February 19, 2019
Windows 7 users: You need SHA-2 support or no Windows updates after July 2019 | ZDNet
Microsoft will begin rolling out SHA-2 standalone updates for Windows 7 and Windows Server 2008 in March in preparation for its July 16 implementation deadline. Source: Windows 7 users: You need SHA-2 support or no Windows updates after July 2019 | ZDNet