responsible disclosure Archives

Critical vulnerability discovered in MySQL application

A researcher has discovered a critical security flaw in the world's most widely used open-source database application — one that could allow hackers to completely take over…

Sep 12, 2016

Because the fix isn’t ready yet, the researchers say they will not identify the device or its maker until the patch is ready, which the manufacturer says will be before the end of next month ( Joan Shaffer)

Smart plug leaves big holes in home network security

Users of a smartphone-controlled web-connected plug that switches power off and on to electrical devices are putting the security of their home wi-fi networks at risk because…

Aug 18, 2016

President Obama visits the National Cybersecurity & Comms Integration Center // Photo by Barry Bahler (Public Domain)

U.S. urged to be more transparent about zero days

The Department of Homeland Security, not the NSA, should be in charge of deciding whether and when the U.S. government discloses new software vulnerabilities its researchers find,…

Jun 17, 2016