Researcher reveals demo attack code, full release in June
Security researcher Kate Temkin has released proof-of-concept code to launch an exploit chain called Fusée Gelée, which relies on an as-yet-undisclosed vulnerability in past versions of Nvidia's Tegra system-on-a-chip.?
Firepower, AnyConnect and ASA appliances and clients need patches
Cisco has announced a suite of patches against a bug in its Security Assertion Markup Language (SAML) implementation.?
Unveil first code, joins giants in industry-standards club
Last week, the first RISC-V port of its seL4 microkernel was released by the Data61 division of the Australian government's Commonwealth Scientific and Industrial Research Organisation (CSIRO).?
Quihoo 360 plays the responsible disclosure game
Chinese company Quihoo 360 says it's found a Windows zero-day in the wild, but because it's notified Microsoft, it's not telling anyone else how it works.?
Your guide to this week in infosec
Roundup Here's a roundup of this week's security news, beyond what we've already covered.?
Health Stream, are you out there? The guy that found your data leak wants a word
A US healthcare company seemingly exposed on the public internet contact information for roughly 10,000 medical professionals.?
Sorry about the hard-coded passwords, can we sell you some crypto now?
RSA has copped to a security vulnerability in the backend systems powering the smartphone app for its annual security conference, held this week in San Francisco, USA.?
Kane Gamble gambles and loses on hacking skills
The British teenager who was sufficiently talented and stupid to hack the webmail of the head of the CIA was today sent down for two years.?
Plenty of laser research already going on ? but there's more than one way to melt a drone
The EU is planning to build a laser cannon with double the power of Britain's under-construction Dragonfire zapper, according to reports ? but the general state of the tech doesn't automatically mean Europe ...
Java fixes lobbed out, Spectre Solaris patches issued
Oracle this week emitted its April security update, addressing a total of 254 security vulnerabilities across dozens of products.?