full disclosure

Neutrino exploit kit adds former IE zero-day flaw to its arsenal

Guess what happened after vulnerability researchers published proof-of-concept code exploiting an Internet Explorer vulnerability?

A notorious exploit kit incorporated the code into its own arsenal.

David Bisson reports.


1 min read

Full Disclosure mailing list shuts down, but won’t fully disclose why

The Full Disclosure mailing list, which often published details of unpatched vulnerabilities, has announced it is shutting down.

But – ironically – it refuses to fully disclose why it is closing its doors.


8 sec read

Microsoft warns in advance of five security bulletins it will publish on Tuesday. Are you ready to patch?

Windows and Microsoft Office are in the firing line.

But will Google engineer Tavis Ormandy’s latest security hole also be fixed?


2 min read