Common Vulnerability Scoring System (CVSS) (Page 23)

Critical vulnerabilities in NGINX allows complete takeover of affected systems. Exploit publicly available; patch now

On: May 26, 2021

Nginx security teams published a report related to a critical vulnerability in their DNS resolution implementation. Tracked as CVE-2021-23017, successful exploitation of this vulnerability would allow threat actors to takeRead More →

AMD confirms two dangerous attacks that can compromise any virtual machine

On: May 17, 2021

In: Vulnerabilities

Tech firm AMD issued a security guide to address two potential attacks against the Secure Encrypted Virtualization (SEV) solution, which keeps virtual machines protected from some attack variants. According toRead More →

Researcher publishes PoC for CVE-2021-31166 vulnerability in Microsoft IIS

On: May 17, 2021

In: Vulnerabilities

Axel Souchet, a security researcher who used to work for Microsoft, revealed the Proof of Concept (PoC) exploit code to abuse a critical Windows IIS server vulnerability. The vulnerability, trackedRead More →

Vulnerabilities in Qualcomm mobile chips expose smartphones from Samsung, Xiaomi, OnePlus and LG

On: May 6, 2021

In: Vulnerabilities

Cybersecurity specialists reported the finding of a critical vulnerability in Mobile Station Modem (MSM) telephone chips, developed by Qualcomm and compatible with 5G technology. Successful exploitation of this flaw wouldRead More →

Critical vulnerability in Hewlett Packard Enterprise products exposes affected systems to hackers

On: May 4, 2021

In: Vulnerabilities

Hewlett Packard Enterprise (HPE) has issued a security alert inviting its users to apply the patch that will address a flaw in Edgeline Infrastructure Manager (EIM), one of its mainRead More →

Critical XSS flaw in PfSense open source firewall; update now

On: May 3, 2021

In: Vulnerabilities

Netgate Solutions announced the release of an update to fix a critical inter-site scripting vulnerability (XSS) impacting its PfSense solution, a FreeBSD-based open source offering for firewall routing and supportRead More →

IP address validation flaw also affects Python projects

On: May 3, 2021

In: Vulnerabilities

Experts report that the newly reported IP address validation vulnerability also impacts the IP address of the standard Python library. The flaw, tracked as CVE2021-29921, resides in the Python 3.xRead More →

Multiple critical vulnerabilities in Cisco industrial products; update immediately

On: April 29, 2021

In: Vulnerabilities

Cisco announced the release of some security patches to address multiple vulnerabilities in Firepower Threat Defense (FTD), an intrusion prevention and monitoring solution. According to the report, successful exploit ofRead More →

Critical vulnerability in Linux kernel allows hackers to compromise affected systems

On: April 28, 2021

In: Vulnerabilities

Cybersecurity specialists reported the finding of a critical information disclosure vulnerability in the Linux kernel, the successful exploitation of which would allow sensitive information to be extracted from the compromisedRead More →

Three zero-day vulnerabilities in SonicWall email security solution actively exploited; update now

On: April 21, 2021

In: Vulnerabilities

SonicWall security teams launched an emergency alert asking their users to install the released security patches to fix three zero-day flaws in their email security solution. SonicWall ES is aRead More →

Common Vulnerability Scoring System (CVSS) (Page 23)

Critical vulnerabilities in NGINX allows complete takeover of affected systems. Exploit publicly available; patch now

AMD confirms two dangerous attacks that can compromise any virtual machine

Researcher publishes PoC for CVE-2021-31166 vulnerability in Microsoft IIS

Vulnerabilities in Qualcomm mobile chips expose smartphones from Samsung, Xiaomi, OnePlus and LG

Critical vulnerability in Hewlett Packard Enterprise products exposes affected systems to hackers

Critical XSS flaw in PfSense open source firewall; update now

IP address validation flaw also affects Python projects

Multiple critical vulnerabilities in Cisco industrial products; update immediately

Critical vulnerability in Linux kernel allows hackers to compromise affected systems

Three zero-day vulnerabilities in SonicWall email security solution actively exploited; update now

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Massive NVIDIA GPU Exploit Found. How Hackers Can Take Down 35% of AI Systems in Cloud!

Blast-RADIUS Attack Exploting Critical RADIUS Flaw Could Compromise Your Network

14 Million Servers Vulnerable to Critical OpenSSH Bug: Become Remote Admin with CVE-2024-6387

How Safe is Your TinyProxy? Step-by-Step Guide to Exploiting Tinyproxy’s Zero Day Vulnerability

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]