"Risk Based Security" news, interviews, and features

News about Risk Based Security

• Researchers disclose four unpatched vulnerabilities in Internet Explorer

  The reports contain limited information, making exploit development hard and unlikely

• Researchers find previously unknown exploits among Hacking Team's leaked files

  At least one new exploit for Flash Player has been confirmed

• Software developers are failing to implement crypto correctly, data reveals

  Lack of specialized training for developers and crypto libraries that are too complex lead to widespread encryption failures

• Critical flaw in ESET products shows why spy groups are interested in antivirus programs

  The flaw could allow attackers to fully compromise systems via websites, email, USB drives and other methods

• Critical VM escape vulnerability impacts business systems, data centers

  The vulnerability, dubbed Venom, affects systems usings the QEMU, Xen and KVM virtualization platforms

• Companies are falling behind on securing their SAP environments

  More than 95 percent of SAP systems are vulnerable, a SAP security firm said