The "PlaneSploit" application was three years in the making, and is able to remotely attack flight management systems, though the program was built to only work on virtual aircraft.
Despite the best efforts by browser and operating system manufacturers to shore up their offerings, exploit hunters are still finding success at attacking the world's best-known platforms - especially when there is a large chunk of change on the line.
Researchers have exploited critical vulnerabilities in two popular medical management platforms used in a host of services, including assisting surgeries and generating patient reports.
The managers of the web application framework have addressed a flaw that would enable attackers to bypass authentication and perform SQL injection attacks.
The latest password breach involves Gamigo, which has lost an estimated 8.2 million email address and password combinations, including three million in the United States.
Another day, another major company is hacked of its members' passwords. This time it is Billabong, the Australia-based surfwear manufacturer, and the credentials reportedly were publicly posted and unencrypted.
Despite initially refuting research findings that its unified threat appliance (UTM) devices all shared a single certificate, thus making them vulnerable to surveillance, Cyberoam has issued a hotfix for the problem.
Companies currently deploying Cyberoam deep packet inspection devices could be at risk due to an intercept flaw, according to a pair of researchers, but the UTM vendor refutes the claim.
