Vulnerabilities (Page 23)

Exploitation code for the zero-day vulnerability in Spring Framework for Java applications is published. New Log4Shell flaw

On: March 30, 2022

Cybersecurity specialists reported a new critical zero-day vulnerability in the Spring Core Java framework. Successful exploitation would allow remote code execution (RCE) in affected applications. Spring is a framework thatRead More →

4 critical vulnerabilities in Omron CX-Position enable malicious code execution

On: March 30, 2022

In: Vulnerabilities

Cybersecurity specialists report the detection of at least 4 vulnerabilities in CX-Position, a position control software developed by the technology firm Omron. According to the report, successful exploitation of theseRead More →

Vulnerability in Combined Charging Systems (CCS) would allow hackers to shut down an electric vehicle from 10 meters away

On: March 30, 2022

In: Vulnerabilities

Cybersecurity specialists report the discovery of a variant of cyberattack against Combined Charging Systems (CCS), one of the most used technological implementations in current electric cars. According to the report,Read More →

3 critical vulnerabilities in Sophos Firewall and other company products

On: March 28, 2022

In: Vulnerabilities

Sophos security teams announced the fixing of a critical remote code execution (RCE) vulnerability in the Sophos Firewall family of products for home and enterprise environments. Sophos Firewall includes TLSRead More →

How anyone can easily steal Honda keyless cars. PoC published

On: March 25, 2022

In: Vulnerabilities

Cybersecurity specialists have found a variant of “replay attack” that would allow threat actors to unlock and even start some models of keyless cars manufactured by Honda and Acura fromRead More →

Two vulnerabilities in Epic Games Launcher allow DoS attacks

On: March 25, 2022

In: Vulnerabilities

Two vulnerabilities have been confirmed to be detected in Epic Games Launcher, the online library and account management tool for PC gaming. According to the report, the successful exploitation ofRead More →

Hard-coded credentials vulnerabilities in 10 models of Lenovo Networking Switches

On: March 24, 2022

In: Vulnerabilities

Cybersecurity specialists reported the detection of multiple vulnerabilities affecting Lenovo Networking Switches. According to the report, successful exploitation of these flaws would allow malicious actors to deploy dangerous hacking activities.Read More →

Privilege escalation and path traversal vulnerabilities affect Argo CD, the GitOps continuous delivery tool for Kubernetes

On: March 24, 2022

In: Vulnerabilities

Cybersecurity specialists report the detection of some security flaws in Argo CD, a declarative continuous delivery tool for Kubernetes following the GitOps pattern of using Git repositories as a sourceRead More →

Critical memory leak and authorization vulnerability in Bareos, a backup and archiving solution

On: March 23, 2022

In: Vulnerabilities

Information security specialists report the detection of two vulnerabilities in Bareos open-source software to back up, archive and restore files on the main operating systems. According to the report, theRead More →

Critical vulnerabilities in Dell laptops’ UEFI allow them to be hacked forever, even when removing the hard drive

On: March 22, 2022

In: Vulnerabilities

Researchers from firmware security firm Binarly confirmed the detection of some critical flaws in the Unified Extensible Firmware Interface (UEFI) of multiple business laptops produced by Dell. A couple ofRead More →

Vulnerabilities (Page 23)

Exploitation code for the zero-day vulnerability in Spring Framework for Java applications is published. New Log4Shell flaw

4 critical vulnerabilities in Omron CX-Position enable malicious code execution

Vulnerability in Combined Charging Systems (CCS) would allow hackers to shut down an electric vehicle from 10 meters away

3 critical vulnerabilities in Sophos Firewall and other company products

How anyone can easily steal Honda keyless cars. PoC published

Two vulnerabilities in Epic Games Launcher allow DoS attacks

Hard-coded credentials vulnerabilities in 10 models of Lenovo Networking Switches

Privilege escalation and path traversal vulnerabilities affect Argo CD, the GitOps continuous delivery tool for Kubernetes

Critical memory leak and authorization vulnerability in Bareos, a backup and archiving solution

Critical vulnerabilities in Dell laptops’ UEFI allow them to be hacked forever, even when removing the hard drive

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Massive NVIDIA GPU Exploit Found. How Hackers Can Take Down 35% of AI Systems in Cloud!

Blast-RADIUS Attack Exploting Critical RADIUS Flaw Could Compromise Your Network

14 Million Servers Vulnerable to Critical OpenSSH Bug: Become Remote Admin with CVE-2024-6387

How Safe is Your TinyProxy? Step-by-Step Guide to Exploiting Tinyproxy’s Zero Day Vulnerability

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]