Software Exposure
Navigation Apps: Leading the Way? Or Following You?
David Sopas | | android, Blog, CSRF, css, Denial of Service, exposed database, Garmin, Go 520, GPS device, navigation apps, remediation, Security Research, Software Exposure, Technical Blog, TomTom, unencrypted HTTTP, Vulnerabilities
In the United States alone, 84% of adults are using navigation applications, according to a recent Gallup poll. Whether they’re downloading it in an app store or the navigation capability is already ...
Apache Struts, RCEs, and the Equifax Breach Anniversary
Matthew Rose | | Apache Software Foundation, Apache Struts, Blog, closed source, CVE-2017-5638, CVE-2017-9805, CVE-2018-11776, Cybersecurity, Equifax breach, open source, Remote Code Execution Vulnerabilities, Software Exposure
We just passed the one-year anniversary of Equifax’s announcement of their massive data breach due to an exploit of an Apache Struts vulnerability (CVE-2017-5638) – and incidentally, at nearly the same time ...
Don’t Look Away, Peekaboo Vulnerability May Allow Hackers to Play the Long Game
Matthew Rose | | Blog, buffer overflow attack, Nuoo, Peekaboo vulnerability, Software Exposure, surveillance cameras, video recorder technology, Zero-day Vulnerability
The newly named Peekaboo vulnerability is a zero-day flaw in China-based Nuuo’s video recorder technology.The flaw in NVRMini2, a network-attached storage device, has remained unfixed in the three months since the vendor ...
GovPayNow Breach Demonstrates Long & Short Term Impacts of Security Slips
On Tuesday, security researcher Brian Krebs announced an issue with a service offered by Government Payment Service Inc. called GovPayNow. This service is used by U.S. state and local governments across 35 ...
Checkmarx Report: Tackling Software Exposure in the DevOps Cycle
Today, in an effort to better understand the evolving nature of software delivery and the role security plays, we released a new report, “Managing Software Exposure: Time to Fully Embed Security into ...
The Era of Software Exposure
Software is at the backbone of the digital transformation We live in a world of massive digital transformation. The technical backbone of this transformation is software. Software can be found everywhere. It ...