Check Point Blog

Don’t Pet This POODLE: New SSL 3.0 Bug

What is POODLE and how does it affect organizations?   On Tuesday, October 14th, Google researchers, Bodo Möller, Thai Duong and Krzysztof Kotowicz discovered a subtle but significant security weakness in version 3.0 of the SSL protocol. This bug, CVE-2014-3566, is being referred to as POODLE – Padding Oracle On Downgraded Legacy Encryption and is…

Read More
Threat Research October 15, 2014

Bug in the Bug Tracker

On September 29th, Check Point’s Malware and Vulnerability Research Group uncovered a critical privilege escalation vulnerability in the popular bug-tracking platform called Bugzilla. According to the CVE security vulnerability database (cvedetails.com), this is the first privilege escalation bug uncovered in the Bugzilla project since 2002. (See also: Bugzilla Zero-Day Exposes Zero-Day Bugs by Brian Krebs)…

Read More
Threat Research October 6, 2014

Lacoon Discovers the Xsser mRAT">

Lacoon Discovers the Xsser mRAT">Mobile Security Weekly – Lacoon Discovers the Xsser mRAT

Read More
Threat Research October 3, 2014