Vulnerabilities (Page 24)

Critical vulnerability in OpenSSL library would allow DoS attacks on millions of applications

On: March 16, 2022

OpenSSL announced the release of an update to address a severe vulnerability in the library whose exploitation would lead to an infinite loop function and an eventual denial of serviceRead More →

Input validation, access control bypass and XSS vulnerabilities in the pfSense firewall: Update immediately

On: March 15, 2022

In: Vulnerabilities

Cybersecurity specialists report the detection of multiple vulnerabilities in pfSense, an open source and custom distribution of FreeBSD optimized for use in devices such as firewalls or routers. According toRead More →

Information disclosure vulnerability in phpMyAdmin: Update immediately

On: March 15, 2022

In: Vulnerabilities

Information security specialists confirmed the detection of a severe vulnerability in phpMyAdmin, a popular web application that provides MySQL database administration functions, in a very simple way and with anRead More →

1 out of 3 WordPress plugins does not receive security updates; millions of websites at risk

On: March 9, 2022

In: Vulnerabilities

A report specialized in WordPress security points to a 150% increase in reported flaws during 2021 compared to the previous year, in addition to establishing that almost 30% of theRead More →

Millions of HP laptops, points of sale machines and servers affected by 16 critical vulnerabilities

On: March 9, 2022

In: Vulnerabilities

A report by cybersecurity firm Binarly points to the detection of 16 critical vulnerabilities in various implementations of Unified Extensible Firmware Interface (UEFI), present in multiple HP enterprise devices. AccordingRead More →

3 critical vulnerabilities in APC UPS could be exploited to shot down thousands of data centers

On: March 9, 2022

In: Vulnerabilities

Cybersecurity specialists report the detection of three zero-day vulnerabilities in uninterruptible power supply (UPS) devices developed by APC, a subsidiary of the well known tech company Schneider Electric. The setRead More →

Important vulnerability in CyberArk Identity security solution

On: March 8, 2022

In: Vulnerabilities

Cybersecurity specialists report the detection of a critical vulnerability in Cyberark Identity, a trusted partner for many leading organizations that allows implementing defense measures against cyberattacks, enabling digital businesses andRead More →

3 XSS vulnerabilities in IBM Security QRadar SOAR: Update immediately

On: March 8, 2022

In: Vulnerabilities

Cybersecurity specialists reported the detection of multiple vulnerabilities in IBM Security QRadar SOAR. According to the report, successful exploitation of these flaws would allow the deployment of severe attack scenarios.Read More →

Severe vulnerability in Linux kernel allows hackers to escape from a container to execute arbitrary commands on the affected host. CVSS 7.0/10

On: March 7, 2022

In: Vulnerabilities

Cybersecurity specialists report the detection of a severe vulnerability in the Linux kernel whose exploitation would allow threat actors to escape from a container to execute arbitrary commands. The flawRead More →

Critical code injection vulnerabilities in VMware Spring Cloud Gateway

On: March 4, 2022

In: Vulnerabilities

Cybersecurity specialists report the detection of two vulnerabilities in VMware Spring Cloud Gateway, a library for creating API gateways over Spring and Java for a flexible way to route requestsRead More →

Vulnerabilities (Page 24)

Critical vulnerability in OpenSSL library would allow DoS attacks on millions of applications

Input validation, access control bypass and XSS vulnerabilities in the pfSense firewall: Update immediately

Information disclosure vulnerability in phpMyAdmin: Update immediately

1 out of 3 WordPress plugins does not receive security updates; millions of websites at risk

Millions of HP laptops, points of sale machines and servers affected by 16 critical vulnerabilities

3 critical vulnerabilities in APC UPS could be exploited to shot down thousands of data centers

Important vulnerability in CyberArk Identity security solution

3 XSS vulnerabilities in IBM Security QRadar SOAR: Update immediately

Severe vulnerability in Linux kernel allows hackers to escape from a container to execute arbitrary commands on the affected host. CVSS 7.0/10

Critical code injection vulnerabilities in VMware Spring Cloud Gateway

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Massive NVIDIA GPU Exploit Found. How Hackers Can Take Down 35% of AI Systems in Cloud!

Blast-RADIUS Attack Exploting Critical RADIUS Flaw Could Compromise Your Network

14 Million Servers Vulnerable to Critical OpenSSH Bug: Become Remote Admin with CVE-2024-6387

How Safe is Your TinyProxy? Step-by-Step Guide to Exploiting Tinyproxy’s Zero Day Vulnerability

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]