API abuse possibilities in AWS enable actors to perform account enumeration.This is not as critical for AWS security as itโฆ
News
A vulnerabilities database logging data for the past decade gives an idea of how software development and maintenance work.Linux andโฆ
A large number of โIngenicoโ Telium 2 POS terminals could be vulnerable to severe attacks.Researchers have figured out numerous waysโฆ
Microsoftโs last โTuesday Patchโ of the year is a bit smaller than usual, but essential nonetheless.There are several RCE fixesโฆ
A large number of networking devices from Zyxel are vulnerable to remote exploitation.Anyone can ssh into port 443 using cleartextโฆ
Microsoft has released the first patch of the year, and itโs a comprehensive set of fixes.One noteworthy flaw is anโฆ
Half a million records of high-ranking individuals from around the world are freely shared on dark web forums.The exposure isโฆ
Highly sophisticated actors have managed to infiltrate SonicWall using zero-days against its own products.The firm has detected the activity andโฆ
โSaferVPNโ is vulnerable to a nasty flaw that it failed to address even after three months.The flaw is now publicโฆ
Kindle devices using outdated firmware are vulnerable to root RCE by MOBI files arriving via email.The attack called โKindleDripโ involvesโฆ
Microsoft has released this monthโs patch for Windows and other products, addressing 56 flaws.The firm focuses on fixing three RCEsโฆ
Indiaโs NCIIPC was found to be plagued by numerous vulnerabilities by white-hat hackers.The group broke into NCIIPCโs server and accessedโฆ
SHAREit is vulnerable to several RCEs and information disclosure flaws, but the developer isnโt fixing them.Researchers have created and publiclyโฆ
Microsoft says there is still a large number of unpatched systems out there, calling admins to update.Malicious actors have beenโฆ
A fresh Mirai variant adds nine more exploits in its galore of targeted vulnerabilities.The authors of Mirai incorporated some ofโฆ
Microsoft is now pushing an Exchange mitigation through a Defender security update.The tool will automatically scan for vulnerable servers, changeโฆ
A new CISA and FBI advisory informs about an undefined APT group targeting FortiOS VPN flaws.The three vulnerabilities mentioned inโฆ
Researchers collected observations from hundreds of exploit attempts against SAP and have alarming results to report. Actors can develop fully-workingโฆ
Microsoft has squashed 114 critical and important bugs this month.There are four fixes for flaws concerning the Exchange Server product.Theโฆ
A large number of sites using various โElementorโ plugins are vulnerable to XSS flaws.The attacks arenโt large-scale but can causeโฆ
Get expert insights on threats, breaches, scams, and security trends โ delivered every Saturday.
Most Popular
