Vulnerabilities – Threatpost
Microsoft Warns of 25 Critical Vulnerabilities in IoT, Industrial Devices
Azure Defender security team discovers that memory allocation is a systemic problem that can allow …
Read more >>
Vulnerabilities – Threatpost
F5 Big-IP Vulnerable to Security-Bypass Bug
The KDC-spoofing flaw tracked as CVE-2021-23008 can be used to bypass Kerberos security and sign in…
Read more >>
Vulnerabilities – Threatpost
Multi-Gov Task Force Plans to Take Down the Ransomware Economy
A coalition of 60 global entities (including the DoJ) has proposed a sweeping plan to hunt down and…
Read more >>
Vulnerabilities – Threatpost
Microsoft Office SharePoint Targeted With High-Risk Phish, Ransomware Attacks
SharePoint servers are being picked at with high-risk, legitimate-looking, branded phish messages a…
Read more >>
Vulnerabilities – Threatpost
Linux Kernel Bug Opens Door to Wider Cyberattacks
The information-disclosure flaw allows KASLR bypass and the discovery of additional, unpatched vuln…
Read more >>
Vulnerabilities – Threatpost
Babuk Ransomware Gang Targets Washington DC Police
The RaaS developers thumbed their noses at police, saying “We find 0 day before you.” Via Vulnerabi…
Read more >>
Vulnerabilities – Threatpost
Apple Patches Zero-Day MacOS Bug That Can Bypass Anti-Malware Defenses
A variant of Mac No. 1 threat Shlayer since January already has been exploiting the vulnerability, …
Read more >>
Vulnerabilities – Threatpost
Mandiant Front Lines: How to Tackle Exchange Exploits
Matt Bromiley, senior principal consultant with Mandiant, offers checklists for how small- and medi…
Read more >>
Vulnerabilities – Threatpost
Adobe Patches Slew of Critical Security Bugs in Bridge, Photoshop
The security bugs could open the door for arbitrary code-execution and full takeover of targeted ma…
Read more >>
Vulnerabilities – Threatpost
Chrome Zero-Day Exploit Posted on Twitter
An update to Google’s browser that fixes the flaw is expected to be released on Tuesday. Via Vulner…
Read more >>
Vulnerabilities – Threatpost
Network Detection & Response: The Next Frontier in Fighting the Human Problem
Justin Jett, director of audit and compliance for Plixer, discusses the transformation of network-t…
Read more >>
Vulnerabilities – Threatpost
Zero-Day Bug Impacts Problem-Plagued Cisco SOHO Routers
Cisco says it will not patch three small business router models and one VPN firewall device with cr…
Read more >>
Vulnerabilities – Threatpost
Azure Functions Weakness Allows Privilege Escalation
Microsoft's cloud-container technology allows attackers to directly write to files, researchers…
Read more >>
Vulnerabilities – Threatpost
Hackers Exploit Fortinet Flaw in Sophisticated Cring Ransomware Attacks
Industrial enterprises in Europe are target of campaign, which forced a shutdown of industrial proc…
Read more >>
Vulnerabilities – Threatpost
Facebook: Stolen Data Scraped from Platform in 2019
The flaw that caused the leak of personal data of more than 533 million users over the weekend no l…
Read more >>
Vulnerabilities – Threatpost
Critical Cloud Bug in VMWare Carbon Black Allows Takeover
CVE-2021-21982 affects a platform designed to secure private clouds, and the virtual servers and wo…
Read more >>
Vulnerabilities – Threatpost
SAP Bugs Under Active Cyberattack, Causing Widespread Compromise
Cyberattackers are actively exploiting known security vulnerabilities in widely deployed, mission-c…
Read more >>
Technology
How Google’s Big Supreme Court Victory Could Change Software Forever
The U.S. Supreme Court sided with Google this week in a major decision that some legal exp…
Read more >>
Vulnerabilities – Threatpost
Apple Mail Zero-Click Security Vulnerability Allows Email Snooping
The researcher is offering details on CVE-2020-9922, which can be triggered just by sending a targe…
Read more >>
Vulnerabilities – Threatpost
How To Defend the Extended Network Against Web Risks
Aamir Lakhani, cybersecurity researcher for Fortinet’s FortiGuard Labs, discusses criminals flockin…
Read more >>
Vulnerabilities – Threatpost
15 Cybersecurity Pitfalls and Fixes for SMBs
In this roundtable, security experts focus on smaller businesses offer real-world advice for action…
Read more >>
Vulnerabilities – Threatpost
FBI: APTs Actively Exploiting Fortinet VPN Security Holes
Three security vulnerabilities in the Fortinet SSL VPN are being used to gain a foothold within net…
Read more >>
Vulnerabilities – Threatpost
80% of Global Enterprises Report Firmware Cyberattacks
A vast majority of companies in a global survey from Microsoft report being a victim of a firmware-…
Read more >>
Vulnerabilities – Threatpost
Legacy QNAP NAS Devices Vulnerable to Zero-Day Attack
Some legacy models of QNAP network attached storage devices are vulnerable to remote unauthenticate…
Read more >>
Vulnerabilities – Threatpost
Building a Fortress: 3 Key Strategies for Optimized IT Security
Chris Haas, director of information security and research at Automox, discusses how to shore up cyb…
Read more >>
