• img May 22, 2018

Researchers Say More Spectre-Related CPU Flaws On Horizon

Yet another speculative execution side channel flaw has been disclosed in processors – and security experts warn that more may be out there.   This post was originally published on https://threatpost.com/feed/. http://blacklakesecurity.com/researchers-say-more-spectre-related-cpu-flaws-on-horizon/

Read More
  • img May 22, 2018

New Spectre-like flaw found in CPUs using speculative execution

A new flaw that can allow an attacker to obtain access to sensitive information on affected systems has been discovered in modern CPUs. CVE-2018-3639, discovered by independently by Google Project Zero and Microsoft Security Response Center researchers and dubbed “Variant 4,” is a Speculative Store Bypass (SSB) vulnerability, and is considered to be a new […]

Read More
  • img May 22, 2018

Six Vulnerabilities Found in Dell EMC’s Disaster Recovery System, One Critical

A pen-tester has found five vulnerabilities in Dell EMC RecoverPoint devices, including a critical RCE that could allow total system compromise.   This post was originally published on https://threatpost.com/feed/. http://blacklakesecurity.com/six-vulnerabilities-found-in-dell-emcs-disaster-recovery-system-one-critical/

Read More
  • img May 22, 2018

Comcast Patches Router Bug That Leaked Some Wi-Fi Passwords

A bug in Comcast’s activation website for its Xfinity routers leaked sensitive customer data.   This post was originally published on https://threatpost.com/feed/. http://blacklakesecurity.com/comcast-patches-router-bug-that-leaked-some-wi-fi-passwords/

Read More
  • img May 22, 2018

Mobile Giants: Please Don’t Share the Where

Your mobile phone is giving away your approximate location all day long. This isn’t exactly a secret: It has to share this data with your mobile provider constantly to provide better call quality and to route any emergency 911 calls straight to your location. But now, the major mobile providers in the United States — […]

Read More