Tor Browser 12.0 released with major changes
2022-12-12
The most recent version of the Tor Browser is a specially packaged version of Firefox 102 ESR that automates the process of establishing a connection to the TOR network. TheRead More →
Cisco IP Phones 7800 and 8800 series have a critical vulnerability could allow remote code execution or DoS attack
2022-12-09
Customers were warned by Cisco on Thursday that fixes for a high-severity vulnerability that affects certain of the company’s IP phones are currently under development. The vulnerability, which is trackedRead More →
OWASP publishes Top 10 CI/CD Security Risks Guidelines
2022-12-09
Any contemporary software company must have environments, procedures, and systems for continuous integration and continuous delivery. They transport the code written at an engineer’s workstation to the production environment. TheRead More →
How to prevent lockouts (security tips)
2022-12-09
Sooner or later, everyone is going to find themselves locked out of their homes. The emotions doing this will create cover everything from embarrassment to fear. If you don’t wantRead More →
New JSON-Based SQL Injection attacks allow bypassing Palo Alto, F5, AWS, Cloudflare, and Imperva WAF
2022-12-08
Web application firewalls, also known as WAFs, are intended to protect web-based applications and application programming interfaces (APIs) from malicious HTTPS traffic coming from the outside, particularly cross-site scripting andRead More →
Critical XXS & CSRF vulnerability allows full account take over of daloRADIUS app
2022-12-08
daloRADIUS is a sophisticated RADIUS web management tool that has been created with the goal of managing hotspots and ISP installations for general use. User administration, graphical reporting, accounting, andRead More →
Zerobot botnet can hack into TOTOLink, Zyxel, Realtek, D-Link , F5, Huawei, MEGApix, Telesquare, Zivif, Tenda & Hikvision devices
2022-12-07
FortiGuard Labs discovered a one-of-a-kind botnet in November that was created in the Go programming language and was being spread via vulnerabilities in IoT devices. This botnet, which goes byRead More →
Patch this Internet Explorer zero day vulnerability (CVE-2022-41128) before North Korean hackers exploit it
2022-12-07
A new zero-day vulnerability has been found by Google’s Threat Analysis Group (TAG), and it is being actively exploited by hackers who are aiming their attacks at users in SouthRead More →
7 security vulnerabilities in Sophos Firewall version < 19.5.0. Patch immediately
2022-12-06
Customers have been alerted by Sophos that many vulnerabilities, including ones that may lead to arbitrary code execution, have been patched in Sophos Firewall version 19.5. Some of these securityRead More →
Rackspace hacked by Ransomware gang via Microsoft exchange vulnerability
2022-12-06
Rackspace, a provider of cloud computing services, has admitted that it was the victim of a ransomware incident, which resulted in the business being forced to shut down its HostedRead More →
