all InfoSec news
Critical Vulnerability in Open SSL
Oct. 28, 2022, 1:12 p.m. | Bruce Schneier
Schneier on Security www.schneier.com
There are no details yet, but it’s really important that you patch Open SSL 3.x when the new version comes out on Tuesday.
How bad is “Critical”? According to OpenSSL, an issue of critical severity affects common configurations and is also likely exploitable.
It’s likely to be abused to disclose server memory contents, and potentially reveal user details, and could be easily exploited remotely to compromise server private keys or execute code execute remotely. In other words, pretty much everything …
More from www.schneier.com / Schneier on Security
Friday Squid Blogging: Emotional Support Squid
1 day, 6 hours ago |
www.schneier.com
FBI Seizes BreachForums Website
1 day, 16 hours ago |
www.schneier.com
Another Chrome Vulnerability
4 days, 16 hours ago |
www.schneier.com
LLMs’ Data-Control Path Insecurity
5 days, 16 hours ago |
www.schneier.com
Friday Squid Blogging: Squid Mating Strategies
1 week, 1 day ago |
www.schneier.com
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Consultant Sécurité SI Gouvernance - Risques - Conformité H/F - Strasbourg
@ Hifield | Strasbourg, France
Lead Security Specialist
@ KBR, Inc. | USA, Dallas, 8121 Lemmon Ave, Suite 550, Texas
Consultant SOC / CERT H/F
@ Hifield | Sèvres, France