You searched for identity management/ | SC Media

Your search for identity management/ returned 16 results

Active Filters

Click on a filter below to refine your search. Remove a filter to broaden your search.

Last 2 years remove
Network Security remove

Your search for identity management/ returned 16 results

Sort Results:

Relevant Recent
VMware advisory warns users to patch critical issue in product
Network Security, Vulnerabilities

VMware begins patching process for Linux SACK vulnerabilities

VMware is instructing users to be on the lookout for software patches for 31 products that are affected by two vulnerabilities associated with the Linux kernel implementation of TCP Selective Acknowledgement (SACK). The two flaws, SACK Panic (CVE-2019-11477) and SACK Excess Resource Usage (CVE-2019-11478), were originally found and disclosed by Netflix researchers, along with two…
Network Security, Security News, Vulnerabilities

Cisco’s latest round of updates address bugs in security products

Cisco Systems on Wednesday issued a series of security updates, in the process disclosing 29 vulnerabilities, including 16 high-impact ones. Among the most serious issues are a series of bugs found in various security-related products, including Cisco Adaptive Security Appliance Software, Firepower Threat Defense Software, Firepower Management Center and FXOS Software. Certain of these vulnerabilities allow for…
Data Breach, Network Security, Security News, Web Services Security, E-Commerce Security

Federal agencies still using insecure knowledge-based verification for online services

A performance audit of six U.S. government agencies found that four of them are still using knowledge-based questions to verify the identities of individuals applying for federal benefits or services, even though this practice is considered outdated and insecure, especially in light of the 2017 Equifax breach. Knowledge-based verification questions are typically created by credit…
Network Security, Security News, Vulnerabilities

Cisco issues multiple product updates, fixes critical flaws in small business switches

Cisco Systems issued a series of security updates on Aug. 6 and 7, in the process disclosing 26 vulnerabilities, including two critical ones found in its Small Business 220 Series Smart Switches. The two most serious bugs consist of a remote code execution flaw (CVE-2019-1913) and an authentication bypass vulnerability (CVE-2019-1912) in the aforementioned switches,…
Network Security, Security News, Vulnerabilities

Cisco fixes critical Aironet Access Points flaw, addresses 29 more bugs

Cisco today released 28 security advisories, in the process addressing a total of 30 vulnerabilities, including a critical unauthorized access bug found in the company’s Cisco Aironet Access Points (APs) software. Officially designated CVE-2019-15260, the flaw potentially can be exploited to view sensitive information, interfere with configuration options and disable the AP, in order to create…
Automakers pen 'privacy principles' for in-car technology
Government, Network Security, Privacy & Compliance News and Analysis, Security News

California DMV exposed drivers’ SSN details to federal gov’t officials

For at least the last four years, the California Department of Motor Vehicles had mistakenly given seven government entities access to Social Security number information pertaining to roughly 3,200 drivers and license applicants, the state agency has admitted in a data breach notification. “You are being sent the attached Notice regarding the disclosure of Social…
Data Breach, Network Security, Security News

Report: Chinese e-retailer Gearbest leaves database exposed, endangering 1.5 million records

The parent company of Chinese e-retailing giant Gearbest has been operating a completely unsecured corporate database, leaving roughly 1.5 million customer records unencrypted and exposed to the public, a new report warns. Led by white-hat hacker Noam Rotem, researchers from VPNMentor revealed the security issue after discovering they were able to access Gearbest’s customer, order,…
Network Security, Security News, Vulnerabilities

Cisco fixes three high-level bugs, but a fourth remains unpatched

Cisco Systems this week issued disclosed a dozen software vulnerabilities, including four high-severity flaws, one of which has not been patched. The flaw with no current fix is CVE-2020-3155: a validation error in the SSL implementation of Cisco Intelligent Proximity, a solution that helps laptops, smartphones and other devices automatically discover and link with Webex…
Network Security, Security News, Vulnerabilities

Five high-level flaws patched in Cisco Discovery Protocol

Cisco Systems has issued fixes for five high-level vulnerabilities in various implementations of its Cisco Discovery Protocol, which is enabled by default in tens of millions of Cisco products. The five flaws, collectively named CDPwn, could allow attackers to either remotely execute code or trigger a denial of service, warned Cisco yesterday, as did researchers…
Network Security, Security News, Vulnerabilities

Vulnerability round-up: Mozilla, Cisco and Samba issue security updates

The Mozilla Foundation, Cisco Systems and the Samba development team yesterday all issued security updates for their respective products, fixing a multitude of software vulnerabilities. Mozilla released updates for Firefox 69, as well as Firefox Extended Support Release (ESR) versions 68.1 and 60.9, in the process patching 20 flaws among them. The only critical-severity bug…
Next post in Security News