CloudFlare, a content delivery network and web security provider used by millions of websites, has admitted that a severe security vulnerability has caused sensitive data to be exposed across a number of different websites. It has been dubbed Cloudbleed and is said to be worse than Heartbleed, a similar bug from 2014. What exactly is Cloudbleed and how could you be affected by it? Let's find out.
Tagged With security
The SHA-1 cryptographic hash function may be 22 years old but it's still widely used today to validate Git repositories, document and digital certificates. We already know SHA-1 is insecure - security experts have been banging on about theoretical attacks facilitated by the algorithm for years. Now Google researchers have demonstrated a practical collision attack is possible. Here's what you need to know and why you should care.
A newly found Linux kernel security vulnerability dates back to 2005 and could potentially be exploited for kernel code execution and local privilege escalation. The flaw affects a number of distributions including Red Hat, Debian, OpenSUSE, SUSE and Ubuntu. Here's how to patch this flaw on your Linux systems.
Google introduced its Verify Apps cloud-based service in 2012 that will check every application before installation on an Android device for added security against malware and other nasties. It has been regularly updated with new features. Now Verify Apps can remove an application without confirmation from the user if the service finds that it's purely harmful.
IT security professionals are highly sought after worldwide. Like many other companies, Google has been on the lookout for talented IT security professionals and has found Sydney to be a good hunting ground for them.
Last year, Yahoo revealed that it had suffered not one, but two, data breaches that resulted in well over one billion user accounts being compromised. The problem was that Verizon was in the process of buying Yahoo's web assets for US$4.83 billion and there were fears that it would renege on the deal. Now Verizon is asking for a discount on the deal.
Just when you think you can rest easy, Microsoft decides to release a bunch of updates that once again add telemetry (information-gathering) services to your machine. While not harmful, they can sometimes hog system resources and be annoying in other ways, so here's how you can purge your PC and — hopefully — keep your computer clean for good.