Update News, Articles and Updates

Massive code rewrite may be required to patch Skype vulnerability

Skype is reportedly refusing to patch a security vulnerability in its updater process which could allow an attacker to gain system level privileges on a vulnerable computer.

Cisco update eliminates DoS vulnerability in Aggregation Services Router OS

Cisco Systems on Wednesday issued a security update that fixes a high-severity denial of service vulnerability in release version 5.3.4 of its IOS XR Software for the Aggregation Services Router (ASR) 9000 Series.

Cisco patches ASA software flaw allowing VPN hacks

Cisco's latest security update patches an Adaptive Security Appliance (ASA) software vulnerability that could allow an attacker to gain complete control of an affected system.

Lenovo patches 14-year-old vulnerability

Lenovo released a patch for a vulnerability introduced 14 years ago via a firmware update by the now-defunct Nortel Networks and its blade server and switch business unit.

Microsoft to remove SMB1 protocol - used by Wannacry - from Windows 10

Microsoft is to remove SMB1 server software, which was used by the NSA and later exploited by the hackers behind the recent Wannacry outbreak.

Siemens update advised following US CERT advisory

Updates are available following US Computer Emergency Response Team (CERT) issuing advisory warning of "weakly protected" credentials in Siemens SIMATIC WinCC flexible industrial control system.

Microsoft Word users fuming as abnormal update borks macros

Microsoft security patch causes users to lose customised templates and safe macros, leaving cyber-security commentators shaking their heads that the software giant could make such a newbie mistake.