Critical vulnerability in Exim e-mail server
Email server Exim contains a critical remote code execution vulnerability (CVE-2019-10149). An attacker could exploit the vulnerability to take control of an affected system. It …
Core security features of the Elastic Stack are now free
Elasticsearch announced that the core security features of the Elastic Stack are now free. This means that users can now encrypt network traffic, create and manage users, define r…
Microsoft patches critical vulnerability in Remote Desktop Services
Microsoft releases security patches to address critical remote code execution vulnerability (CVE-2019-0708) that exists in Remote Desktop Services formerly known as Terminal Servi…
Vulnerability in Linux kernel allows remote code execution
Linux systems based on kernel versions prior to 5.0.8 are affected by a race condition vulnerability CVE-2019-11815 leading to a use after free that could be exploited by hackers …
New collision attack on SHA-1 hashing algorithm
Attacks on the SHA-1 hashing algorithm just got a lot more dangerous last week with the discovery of the first-ever "chosen-prefix collision attack," a more practical version of t…