ASUS issues patch, downplays scope of APT hack of its supply chain
ASUS's statement contrasted with the findings of researchers who called the hack seemingly “one of the biggest supply-chain incidents ever.”
WordPress plugin patches flaw that gave hackers potential access to 40,000 websites
The plugin Simple Social Buttons allows Wordpress users to distribute content on social media platforms. The flaw was discovered by a security developer at WebARX.
Adobe issues fix for Flash bug allowing remote code execution
Without the patch, Flash could mistakenly run a piece of code without verifying what type it is. Hackers can exploit the bug to remotely execute code.
Apache alerts developers of remote code execution flaw
The two-year-old flaw could allow hackers to take control of unsuspecting developers' web servers.
Cisco patches 'critical' credential bug in video surveillance software
The company says it failed to disable the root account in the affected software. The root account has static credentials that can be exploited by anyone who knows them.
Cisco investigation reveals ASA vulnerability is worse than originally thought
The second look revealed additional attack vectors and raised the ire of IT staffs everywhere.