Clickjacking Evolves to Hook Millions of Top-Site Visitors
Researchers said that clickjacking is a threat that’s evolving, with new tactics just starting to emerge. Go to Source
Fingerprints of 1M Exposed in Public Biometrics Database
A publicly accessible database exposed the fingerprints and facial recognition information of millions, thrusting biometrics security into the spotlight once again. Go to Source
Lenovo Warns on ThinkPad Bugs, One Unpatched
The notebook maker is warning users of three separate vulnerabilities. Go to Source
20-Year-Old Bug in Legacy Microsoft Code Plagues All Windows Users
A bug in an obscure legacy Windows protocol can lead to serious real-world privilege-escalation attacks. Go to Source
Windows Users at Risk From High-Severity Intel Software Flaw
Overall, Intel stomped out three high-severity vulnerabilities and five medium-severity flaws. Go to Source
DEF CON and Feds Partner on Anonymous Bug Submission Program
Bug submission program uses the SecureDrop platform to ensure anonymity. Go to Source
Shades of BlueKeep: Wormable Remote Desktop Bugs Top August Patch Tuesday List
The flaws allow remote code-execution without user interaction or authentication, and are highly exploitable. Go to Source
22 Critical Flaws Patched in Adobe Photoshop
Patched critical flaws in Adobe’s Photoshop CC photo editing application enable arbitrary code execution. Go to Source
Cerberus Enters the Android Malware Rental Scene
The mobile banking trojan has a few unusual features and bears watching, researchers said. Go to Source
British Airways E-Ticketing Flaw Exposes Passenger Flight, Personal Data
A vulnerability in British Airways’ e-ticketing system could enable a bad actor to view passengers’ personal data or change their booking information. Go to Source