Vulnerabilities & Exploits

Just a few months after Spectre and Meltdown, researchers discovered a new set of vulnerabilities in Intel chips called Spectre New Generation.

Security researchers discovered an RCE vulnerability in more than a million home fiber routers.

Twitter announced that a bug in their system may have exposed user passwords internally and urged all subscribers to change their account passwords.

A flaw in medical devices’ WPA2 protocol may be exploited to change patients’ records and expose their personal information.

Researchers found a design flaw in Alexa that can be exploited to eavesdrop and transcribe to steal all sensitive information heard.

An audit of source codes in certain web applications found that 85 percent contained vulnerabilities, with finance and banking-related web applications the most susceptible.

Android mobile apps reusing advertising SDKs still using HTTP protocol risk exposing unencrypted user personal information, security researchers warned at the RSA Conference.

Security researchers reported several vulnerabilities in ICS routers commonly used in vital infrastructures, such as water and electricity generation and distribution.

Analysis of over 1,000 open-source serverless applications revealed that 21% of them have critical vulnerabilities or were misconfigured. What does this mean for DevOps?