Vulnerabilities (Page 211)

Lenovo scrambling to get a fix for BIOS vuln

On: July 4, 2016

Is it a bug or is it a backdoor? Lenovo, and possibly other PC vendors, is exposed to a UEFI bug that can be exploited to disable firmware write-protection. If theRead More →

Magento – Re-Installation & Account Hijacking Vulnerabilities

On: July 2, 2016

In: Vulnerabilities

Before discovering my latest Magento RCE, I’ve found two different vulnerabilities, both resulting in the complete compromise of customer data and/or the server. As they are far less complicated, I’mRead More →

Android’s full-disk encryption just got much weaker—here’s why

On: July 2, 2016

In: Mobile Security, Vulnerabilities

Unlike Apple’s iOS, Android is vulnerable to several key-extraction techniques. Privacy advocates take note: Android’s full-disk encryption just got dramatically easier to defeat on devices that use chips from semiconductor makerRead More →

Google Finds 16 Bugs, 2 Zero-Days, in Windows Kernel Font Handling

On: July 1, 2016

In: Vulnerabilities

The two zero-days were fixed in the summer of 2015.Project Zero researchers revealed this week that they helped Microsoft patch 16 security issues relating to how font processing operations areRead More →

FOXIT PATCHES 12 VULNERABILITIES IN PDF READER

On: July 1, 2016

In: Vulnerabilities

Foxit patched a dozen vulnerabilities in its PDF reader software this week, more than half of which could allow an attacker to directly execute arbitrary code on vulnerable installations ofRead More →

High-severity bugs in 25 Symantec/Norton products imperil millions

On: June 30, 2016

In: Vulnerabilities

If you use a Symantec or Norton product, now would be a good time to update. Much of the product line from security firm Symantec contains a raft of vulnerabilities thatRead More →

Clever Attack Uses the Sound of a Computer’s Fan to Steal Data

On: June 29, 2016

In: Important, Incidents, Mobile Security, Vulnerabilities

IN THE PAST two years a group of researchers in Israel has become highly adept at stealing data from air-gapped computers—those machines prized by hackers that, for security reasons, areRead More →

APPLE LEAVES IOS 10 BETA KERNEL UNENCRYPTED: PROS AND CONS

On: June 29, 2016

In: Mobile Security, Vulnerabilities

Last week Apple cleared the air as to whether or not it intentionally released an unencrypted version of its iOS 10 beta kernel to the developer community, stating the moveRead More →

The Infamous Nuclear Exploit Kit Shuts Down

On: June 28, 2016

In: Important, Incidents, Malware, Vulnerabilities

In a seeming response to the recent Check Point investigative report, the Nuclear Exploit Kit shut down its entire infrastructure and ceased operation. Background The Nuclear Exploit Kit, one ofRead More →

Widespread Attack on Office 365 Corporate Users with Zero-day Ransomware Virus

On: June 28, 2016

In: Malware, Vulnerabilities

Millions of Office 365 business users likely effected. Starting June 22 at 6:44 a.m. UTC, Avanan’s Cloud Security Platform started to detect a massive attack against its customers that were usingRead More →

Vulnerabilities (Page 211)

Lenovo scrambling to get a fix for BIOS vuln

Magento – Re-Installation & Account Hijacking Vulnerabilities

Android’s full-disk encryption just got much weaker—here’s why

Google Finds 16 Bugs, 2 Zero-Days, in Windows Kernel Font Handling

FOXIT PATCHES 12 VULNERABILITIES IN PDF READER

High-severity bugs in 25 Symantec/Norton products imperil millions

Clever Attack Uses the Sound of a Computer’s Fan to Steal Data

APPLE LEAVES IOS 10 BETA KERNEL UNENCRYPTED: PROS AND CONS

The Infamous Nuclear Exploit Kit Shuts Down

Widespread Attack on Office 365 Corporate Users with Zero-day Ransomware Virus

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

FortiGate Firewalls Zero-Day Chaos: How Hackers Are Gaining Control of Firewalls Worldwide – Is Your Network at Risk?

How Hackers Can Hijack Your Device Without You Knowing – MediaTek’s RCE Flaw Explained

Hacking Active Directory: Learn How LDAPNightmare Flaw Shuts Down AD Services

PAN-OS DoS Flaw: Is Your Network at Risk? Learn How to Secure It Now!

Don’t Get Hacked! Sophos Firewall Vulnerabilities Explained

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]