Login
FreshRSS
Login
Naked Security
How to hack an unpatched Exchange server with rogue PowerShell code
By
Paul Ducklin
β November 22
nd
2022 at 19:54
Review your servers, your patches and your authentication policies - there's a proof-of-concept out
Naked Security
Dangerous hole in Apache Commons Text β like Log4Shell all over again
By
Paul Ducklin
β October 18
th
2022 at 17:26
Third time unlucky. Time to put your patching boots on again...
act-1200
Naked Security
S3 Ep103: Scammers in the Slammer (and other stories) [Audio + Text]
By
Paul Ducklin
β October 6
th
2022 at 14:43
Latest episode - listen and learn now (or read and revise, if the written word is your thing)...
Naked Security
S3 Ep102.5: βProxyNotShellβ Exchange bugs β an expert speaks [Audio + Text]
By
Paul Ducklin
β October 1
st
2022 at 14:05
Who's affected, what you can do while waiting for Microsoft's patches, and how to plan your threat hunting...
Naked Security
8 months on, US says Log4Shell will be around for βa decade or longerβ
By
Paul Ducklin
β July 18
th
2022 at 16:57
When it comes to cybersecurity, ask not what everyone else can do for you...
Naked Security
Two different βVMware Springβ bugs at large β we cut through the confusion
By
Paul Ducklin
β March 31
st
2022 at 16:59
Whoever came up with the name "Spring4Shell" didn't help at all... we cut through the Spring Bug confusion
Naked Security
S3 Ep64: Log4Shell again, scammers keeping busy, and Apple Home bug [Podcast + Transcript]
By
Paul Ducklin
β January 6
th
2022 at 19:44
We're back for 2022 - listen now!
Naked Security
FTC threatens βlegal actionβ over unpatched Log4j and other vulns
By
Paul Ducklin
β January 5
th
2022 at 19:37
Remember the Equifax breach? Remember the $700m penalty? In case you'd forgotten, here's the FTC to refresh your memory!
Naked Security
Log4Shell vulnerability Number Four: βMuch ado about somethingβ
By
Paul Ducklin
β December 29
th
2021 at 19:12
It's a Log4j bug, and you ought to patch it. But we don't think it's a critical crisis like the last one.
Naked Security
S3 Ep63: Log4Shell (what else?) and Apple kernel bugs [Podcast+Transcript]
By
Paul Ducklin
β December 16
th
2021 at 17:41
Latest episode - listen now! (Yes, there are plenty of critical things to go along with Log4Shell.)
Naked Security
Log4Shell explained β how it works, why you need to know, and how to fix it
By
Paul Ducklin
β December 13
th
2021 at 19:41
Find out how to deal with the Log4Shell vulnerability right across your estate. Yes, you need to patch, but that helps everyone else along with you!
Naked Security
βLog4Shellβ Java vulnerability β how to safeguard your servers
By
Paul Ducklin
β December 10
th
2021 at 19:22
Just when you thought it was safe to relax for the weekend... a critical bug showed up in Apache's Log4j product
There are no more articles
β
Mark all as read