Security
Headlines
HeadlinesLatestCVEs

Tag

#Nicholas Weaver

‘Trojan Source’ Bug Threatens the Security of All Code

Virtually all compilers -- programs that transform human-readable source code into computer-executable machine code -- are vulnerable to an insidious attack in which an adversary can introduce targeted vulnerabilities into any software without being detected, new research released today warns. The vulnerability disclosure was coordinated with multiple organizations, some of whom are now releasing updates to address the security weakness.

Krebs on Security
Open in Source
#Latest Warnings#The Coming Storm#Time to Patch#Bidi override#Cambridge University#CVE-2021-42574#CVE-2021-42694#Johns Hopkins Information Security Institute#Matthew Green#Nicholas Weaver#Ross Anderson#Rust#Trojan Source bug#University of California Berkeley#vulnerability#mac
Indictment, Lawsuits Revive Trump-Alfa Bank Story

In October 2016, media outlets reported that data collected by some of the world's most renowned cybersecurity experts had identified frequent and unexplained communications between an email server used by the Trump Organization and Alfa Bank, one of Russia's largest financial institutions. Those publications set off speculation about a possible secret back-channel of communications, as well as a series of lawsuits and investigations that culminated last week with the indictment of the same former federal cybercrime prosecutor who brought the data to the attention of the FBI five years ago.