Tags Tavis Ormandy

uTorrent vulnerabilities allow information disclosure and remote code execution

by Patrick Howell O'Neill

Users of the file-sharing app were left exposed for several hours while the bug was public and a new security patch didn't quite work. A new and effective patch was delivered soon afterward.

Bug in Grammarly browser extension exposes what a user ever writes

by Patrick Howell O'Neill

The browser extension has access to virtually everything a user types and therefore an attacker could access a huge trove of private data.

Cloudbleed: Coding error means Cloudflare has been leaking tons of private information

by Patrick Howell O'Neill

As a result of the bug, virtually any traffic that passed through Cloudflare could be public including emails, private messages, passwords and other private data.