Two Broadcom WiFi chipset drivers are vulnerable to validation bypassing and heap buffer overflow. Thereโs an extensive list of 166โฆ
News
AdBlock, AdBlock Plus, and uBlock are vulnerable to arbitrary code execution. There are numerous web services that can be exploitedโฆ
Quite a lot of the most widely used email clients are vulnerable to signature spoofing attacks. The relevant study showsโฆ
Dellโs SupportAssist allows malicious actors to download and run arbitrary executables. The software was supposed to be locked from gettingโฆ
Users of older and unsupported Windows versions are in danger, but Microsoft wonโt leave them to their fate. A newโฆ
A WhatsApp call is enough to plant particularly nasty spyware in your smartphone. The actors are using NSOโs Pegasus, aโฆ
Slimstat Analytics plugin is vulnerable to a visitor XSS storing handout to attackers. The developers released a fixing patch shortlyโฆ
A hacker has published a new zero-day vulnerability in Windows 10, along with the associated proof of concept code. Theโฆ
Recent Linux Kernel versions are vulnerable to a complicated scenario of exploitation. The primary source of the problem is aโฆ
A Google researcher has discovered a way to exploit Notepad remotely. The researcher claims that his method is perfectly doableโฆ
Nvidia urges users to update their 'GeForce Experience' suite to version 3.19. Previous versions are ridden by two highly severeโฆ
Streaming service providers that use the Infomir infrastructure are possibly vulnerable to RCE. The flaw does not affect only theโฆ
Older Diebold Nixdorf ATMs running outdated software are vulnerable to RCE attacks. The ATMs that carry this flaw are ofโฆ
VLC releases a final bug-fixing version just before we enter the 4.0 branch age. There are 33 fixes to securityโฆ
Mozilla Firefox is plagued by a zero-day vulnerability that is already under active exploitation in the wild. The vulnerability wasโฆ
Researchers warn of a severe Evernote vulnerability affecting older versions of its Chrome extension. An attacker could abuse the extensionโsโฆ
A researcher found a way to plant malware on a system silently, using Excel's Power Query. The dropping server canโฆ
Zoom is plagued by a zero-day that enables malicious websites to force users joining meetings. The developers of the conferencingโฆ
Apple has pushed an emergency silent update to Mac, resolving the Zoom privacy issues. Users of Zoom will not runโฆ
Two DEVCORE researchers will present how they managed to compromise corporate networks in two weeks. The researchers have already sharedโฆ
Get expert insights on threats, breaches, scams, and security trends โ delivered every Saturday.
Most Popular
