Ads

Showing posts from June, 2020Show all
CISA: Nation-State Attackers Likely to Exploit Palo Alto Networks Bug Vulnerabilities – Threatpost

CISA: Nation-State Attackers Likely to Exploit Palo Alto Networks Bug

June 30, 2020

An authentication-bypass vulnerability allows attackers to access network assets without credential…

Read more >>
Tuesday’s Magento 1 EOL Leaves Clock Ticking on 100K Online Stores Vulnerabilities – Threatpost

Tuesday’s Magento 1 EOL Leaves Clock Ticking on 100K Online Stores

June 30, 2020

Adobe and payment-card companies are making last-minute pleas for e-commerce sites to update to Mag…

Read more >>
Unpatched Wi-Fi Extender Opens Home Networks to Remote Control Vulnerabilities – Threatpost

Unpatched Wi-Fi Extender Opens Home Networks to Remote Control

June 29, 2020

The Homeplug device, from Tenda, suffers from web server bugs as well as a DoS flaw. Via Vulnerabil…

Read more >>
DarkCrewFriends Returns with Botnet Strategy Vulnerabilities – Threatpost

DarkCrewFriends Returns with Botnet Strategy

June 27, 2020

The botnet can be used to mount different kinds of attacks, including code-execution and DDoS. Via …

Read more >>
Golang Worm Widens Scope to Windows, Adds Payload Capacity Vulnerabilities – Threatpost

Golang Worm Widens Scope to Windows, Adds Payload Capacity

June 26, 2020

A first-stage malware loader spotted in active campaigns has added additional exploits and a new ba…

Read more >>
Apple Ditching Intel Could Mean Big Changes Ahead for Mac Desktops and Laptops Technology

Apple Ditching Intel Could Mean Big Changes Ahead for Mac Desktops and Laptops

June 25, 2020

Apple’s first-ever virtual Worldwide Developer Conference (WWDC) came with the usual slew …

Read more >>
Nvidia Warns Windows Gamers of Serious Graphics Driver Bugs Vulnerabilities – Threatpost

Nvidia Warns Windows Gamers of Serious Graphics Driver Bugs

June 25, 2020

Several high-severity flaws in Nvidia's GPU display drivers for Windows users could lead to cod…

Read more >>
Emerging Ransomware Targets Photos, Videos on Android Devices Vulnerabilities – Threatpost

Emerging Ransomware Targets Photos, Videos on Android Devices

June 25, 2020

The CryCryptor malware strain is a brand-new family of threats, leveraging COVID-19 to spread. Via …

Read more >>
Self-Propagating Lucifer Malware Targets Windows Systems Vulnerabilities – Threatpost

Self-Propagating Lucifer Malware Targets Windows Systems

June 25, 2020

A new devilish malware is targeting Windows systems with cryptojacking and DDoS capabilities. Via V…

Read more >>
The 5 Most Exciting Things Apple Announced at its Virtual WWDC 2020 Technology

The 5 Most Exciting Things Apple Announced at its Virtual WWDC 2020

June 23, 2020

The effects of COVID-19, which necessitate social distancing and nationwide stay-at-home o…

Read more >>
AMD: Fixes For High-Severity SMM Callout Flaws Upcoming Vulnerabilities – Threatpost

AMD: Fixes For High-Severity SMM Callout Flaws Upcoming

June 22, 2020

AMD has fixed one high-severity vulnerability affecting its client and embedded processors; fixes f…

Read more >>
Netgear Zero-Day Allows Full Takeover of Dozens of Router Models Vulnerabilities – Threatpost

Netgear Zero-Day Allows Full Takeover of Dozens of Router Models

June 19, 2020

An unpatched vulnerability in the web server of device firmware gives attackers root privileges, re…

Read more >>
Google Yanks 106 ‘Malicious’ Chrome Extensions Vulnerabilities – Threatpost

Google Yanks 106 ‘Malicious’ Chrome Extensions

June 19, 2020

Trojan Chrome browser extensions spied on users and maintained a foothold on the networks of financ…

Read more >>
Cisco Webex, Router Bugs Allow Code Execution Vulnerabilities – Threatpost

Cisco Webex, Router Bugs Allow Code Execution

June 18, 2020

High-severity flaws plague Cisco's Webex collaboration platform, as well as its RV routers for …

Read more >>
AcidBox Malware Uncovered Using Repurposed VirtualBox Exploit Vulnerabilities – Threatpost

AcidBox Malware Uncovered Using Repurposed VirtualBox Exploit

June 18, 2020

A “very rare” malware has been used by an unknown threat actor in cyberattacks against two differen…

Read more >>
Premier League’s Return: A Hat Trick of Cyberthreats? Vulnerabilities – Threatpost

Premier League’s Return: A Hat Trick of Cyberthreats?

June 18, 2020

The beautiful game is back on the pitch in the U.K. -- and cyberattackers will be looking to take a…

Read more >>
Coronavirus-Themed Cyberattacks Drop, Microsoft Vulnerabilities – Threatpost

Coronavirus-Themed Cyberattacks Drop, Microsoft

June 17, 2020

Microsoft report offers insight on how threat actors exploited COVID-19 across the globe. Via Vulne…

Read more >>
Adobe Patches 18 Critical Flaws in Out-Of-Band Update Vulnerabilities – Threatpost

Adobe Patches 18 Critical Flaws in Out-Of-Band Update

June 17, 2020

Critical vulnerabilities were patched in Adobe After Effects, Illustrator, Premiere Pro, Premiere R…

Read more >>
Theft of CIA’s ‘Vault 7’ Secrets Tied to ‘Woefully Lax” Security Vulnerabilities – Threatpost

Theft of CIA’s ‘Vault 7’ Secrets Tied to ‘Woefully Lax” Security

June 16, 2020

An internal investigation into the 2016 CIA breach condemned the agency's security measures, sa…

Read more >>
‘Ripple20’ Bugs Impact Hundreds of Millions of Connected Devices Vulnerabilities – Threatpost

‘Ripple20’ Bugs Impact Hundreds of Millions of Connected Devices

June 16, 2020

The vulnerabilities affect everything from printers to insulin pumps to ICS gear. Via Vulnerabiliti…

Read more >>
WFH Alert: Critical Bug Found in Old D-Link Router Models Vulnerabilities – Threatpost

WFH Alert: Critical Bug Found in Old D-Link Router Models

June 16, 2020

Researchers find six bugs in consumer D-Link DIR-865L Wireless AC 1750 Dual Band Cloud Router. Via …

Read more >>
Android ‘ActionSpy’ Malware Targets Turkic Minority Group Vulnerabilities – Threatpost

Android ‘ActionSpy’ Malware Targets Turkic Minority Group

June 13, 2020

Researchers warn that the Earth Empusa threat group is distributing the spyware by injecting code i…

Read more >>
Helping Remote Workers Overcome Remote Attacks Vulnerabilities – Threatpost

Helping Remote Workers Overcome Remote Attacks

June 11, 2020

Because remote workers' devices are all connected to a home network, they don’t even need to be…

Read more >>
Critical Intel Flaws Fixed in Active Management Technology Vulnerabilities – Threatpost

Critical Intel Flaws Fixed in Active Management Technology

June 11, 2020

Two critical flaws in Intel AMT, which could enable privilege escalation, were patched along with 2…

Read more >>
Microsoft June Patch Tuesday Fixes 129 Flaws in Largest-Ever Update Vulnerabilities – Threatpost

Microsoft June Patch Tuesday Fixes 129 Flaws in Largest-Ever Update

June 10, 2020

The June Patch Tuesday update included CVEs for 11 critical remote code-execution vulnerabilities a…

Read more >>
Adobe Warns of Critical Flaws in Flash Player, Framemaker Vulnerabilities – Threatpost

Adobe Warns of Critical Flaws in Flash Player, Framemaker

June 09, 2020

Critical Adobe Flash Player and Framemaker flaws could enable arbitrary code execution. Via Vulnera…

Read more >>
SMBGhost RCE Exploit Threatens Corporate Networks Vulnerabilities – Threatpost

SMBGhost RCE Exploit Threatens Corporate Networks

June 08, 2020

The release of a PoC for the Windows flaw known as "SMBGhost" could set off cyberattack w…

Read more >>
Microsoft CEO Satya Nadella Talks COVID-19 Response And Change After George Floyd Technology

Microsoft CEO Satya Nadella Talks COVID-19 Response And Change After George Floyd

June 07, 2020

(Miss this week’s The Leadership Brief ? This interview below was delivered to the inbox o…

Read more >>
WhatsApp Phone Numbers Pop Up in Google Search Results — But is it a Bug? Vulnerabilities – Threatpost

WhatsApp Phone Numbers Pop Up in Google Search Results — But is it a Bug?

June 05, 2020

A researcher found that phone numbers tied to WhatsApp accounts are indexed publicly on Google Sear…

Read more >>
Attackers Target 1M+ WordPress Sites To Harvest Database Credentials Vulnerabilities – Threatpost

Attackers Target 1M+ WordPress Sites To Harvest Database Credentials

June 04, 2020

An attack over the weekend unsuccessfully targeted 1.3 million WordPress websites, in attempts to d…

Read more >>
Critical SAP ASE Flaws Allow Complete Control of Databases Vulnerabilities – Threatpost

Critical SAP ASE Flaws Allow Complete Control of Databases

June 03, 2020

Researchers warn of critical flaws in SAP's Sybase Adaptive Server Enterprise software. Via Vul…

Read more >>
Two Critical Android Bugs Open Door to RCE Vulnerabilities – Threatpost

Two Critical Android Bugs Open Door to RCE

June 02, 2020

Google and Qualcomm both addressed significant vulnerabilities in their June updates. Via Vulnerabi…

Read more >>
Severe Cisco DoS Flaw Can Cripple Nexus Switches Vulnerabilities – Threatpost

Severe Cisco DoS Flaw Can Cripple Nexus Switches

June 02, 2020

Cisco has patched a high-severity flaw that could lead to denial-of-service attacks on its Nexus sw…

Read more >>
Apple Jailbreak Zero-Day Gets a Patch Vulnerabilities – Threatpost

Apple Jailbreak Zero-Day Gets a Patch

June 02, 2020

The zero-day vulnerability tracked as CVE-2020-9859 is exploited by the "Uncover" jailbre…

Read more >>
Apple Pays $100K Bounty for Critical ‘Sign in With Apple’ Flaw Vulnerabilities – Threatpost

Apple Pays $100K Bounty for Critical ‘Sign in With Apple’ Flaw

June 01, 2020

Apple has fixed a critical flaw in its Sign in with Apple feature, which could have been abused by …

Read more >>