• img February 16, 2018

Intel offers to pay for Spectre-like side channel vulnerabilities

Intel is expanding the bug bounty program it started last March, and is raising considerably the awards it plans to give out for helpful vulnerability information. Where information about critical vulnerabilities in Intel software, firmware and hardware could have previously been rewarded with up to $7,500, $10,000 and $30,000, respectively, now the bounties in those […]

Read More
  • img February 16, 2018

Still relying solely on CVE and NVD for vulnerability tracking? Bad idea

2017 broke the previous all-time record for the highest number of reported vulnerabilities. The 20,832 vulnerabilities cataloged during 2017 by Risk Based Security (VulnDB) eclipsed the total covered by MITRE’s Common Vulnerability Enumeration (CVE) and the National Vulnerability Database (NVD) by more than 7,900. “Incredibly, we see too many companies still relying on CVE and […]

Read More
  • img February 15, 2018

Intel Expands Bug Bounty Program Post-Spectre and Meltdown

Intel will pay up to $250,000 to researchers who identify bugs more severe than 9.0 on the CVSS scale.   This post was originally published on https://threatpost.com/feed/. https://blacklakesecurity.com/intel-expands-bug-bounty-program-post-spectre-and-meltdown/

Read More
  • img February 15, 2018

UK government officially blames Russia for NotPetya attack

The UK government has officially attributed the June 2017 NotPetya cyber attack to the Russian government. The statement is backed by an assessment of the UK’s National Cyber Security Centre, which has found that the Russian military was “almost certainly” responsible for it. The NotPetya attack “The NotPetya attack saw a malicious data encryption tool […]

Read More
  • img February 15, 2018

Reported Critical Vulnerabilities In Microsoft Software On the Rise

Avecto researchers say removing admin rights from users would mitigate many of the threats.   This post was originally published on https://threatpost.com/feed/. https://blacklakesecurity.com/reported-critical-vulnerabilities-in-microsoft-software-on-the-rise/

Read More