Vulnerabilities (Page 2)

Critical vulnerability in Jira Software can allow an attacker to impersonate another user

On: February 3, 2023

Jira Service Management Server and Data Center include a significant vulnerability that has been tracked as CVE-2023-22501 (CVSS score: 9.4) and has been patched by Atlassian. Under some conditions, anRead More →

This F5 BIG-IP Vulnerability makes it easier for Ransomware to encrypt networks devices

On: February 2, 2023

In: Vulnerabilities

BIG-IP has a high-severity format string vulnerability, according to F5, which might enable an authorized attacker to create a denial-of-service (DoS) scenario and perhaps execute arbitrary code. F5 has issuedRead More →

Deadbolt ransomware could encrypt thousands of vulnerable QNAP NAS devices. Patch yours ASAP

On: February 1, 2023

In: Malware, Vulnerabilities

On the 30th of January, 2023, reports began to surface about a newly discovered vulnerability that affects QNAP devices. Although there is limited information regarding the vulnerability’s specifics, it hasRead More →

Hackers could take control of Lexmark printers or see what you print if you don’t apply this patch

On: January 26, 2023

In: Data Security, Vulnerabilities

Lexmark products are susceptible to server-side request forgery because to insufficient input validation in the Web Services capability, as tracked by CVE-2023-23560. A remote attacker might use this vulnerability toRead More →

2 Critical vulnerabilities in Argo CD allow complete take over of your Kubernetes

On: January 26, 2023

In: Vulnerabilities

Argo CD is a Kubernetes-based declarative GitOps continuous delivery platform. It is built as a Kubernetes controller that constantly monitors running apps and compares their current, live state to theRead More →

Realtek SDK Vulnerability exploited to hack into 190 models of IoT devices from 66 manufacturers

On: January 25, 2023

In: Data Security, Malware, Vulnerabilities

Researchers from Unit 42 discovered that between August and October 2022, more than forty percent of all attacks were attempts to exploit a vulnerability in Realtek Jungle SDK that allowedRead More →

4 important vulnerabilities patched in VMware vRealize Log Insight

On: January 24, 2023

In: Vulnerabilities

VRealize Log Insight is a log collecting and analytics virtual appliance that gives administrators the ability to collect, display, manage, and analyze syslog data. Log Insight was developed by Logrotate.Read More →

Critical AWS CloudTrail vulnerability allowed attackers to circumvent CloudTrail & GuardDuty logging

On: January 23, 2023

In: Data Security, Vulnerabilities

CloudTrail is the tool that AWS administrators rely on to keep track of all API activity inside their accounts. CloudTrail helps teams to identify unusual behavior in AWS environments, spotRead More →

Exploit code for ManageEngine RCE flaw published. Patch immediately

On: January 20, 2023

In: Data Security, Vulnerabilities

Because to the use of an obsolete third-party dependecies many ManageEngine products might make it possible for a remote attacker to execute arbitrary code on the system. This was caused byRead More →

Sudo has a high-severity vulnerability that low-privilege attackers might exploit to get root access

On: January 19, 2023

In: Vulnerabilities

Sudo is one of the most essential, powerful, and often used tools that comes as a core command pre-installed on macOS and practically every other UNIX or Linux-based operating system.Read More →

Vulnerabilities (Page 2)

Critical vulnerability in Jira Software can allow an attacker to impersonate another user

This F5 BIG-IP Vulnerability makes it easier for Ransomware to encrypt networks devices

Deadbolt ransomware could encrypt thousands of vulnerable QNAP NAS devices. Patch yours ASAP

Hackers could take control of Lexmark printers or see what you print if you don’t apply this patch

2 Critical vulnerabilities in Argo CD allow complete take over of your Kubernetes

Realtek SDK Vulnerability exploited to hack into 190 models of IoT devices from 66 manufacturers

4 important vulnerabilities patched in VMware vRealize Log Insight

Critical AWS CloudTrail vulnerability allowed attackers to circumvent CloudTrail & GuardDuty logging

Exploit code for ManageEngine RCE flaw published. Patch immediately

Sudo has a high-severity vulnerability that low-privilege attackers might exploit to get root access

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Nigeria spends more than any other African country in spying its citizens

How to Hack Bank’s Voice Recognition System – Voice Biometrics with DeepFake Voice Cloning

Step by step process of hacking ATMs using black box. ATM jackpotting

Critical Samba vulnerabilities easily allow hacking of servers

Hacking WPA1, WPA2, and WPA3 using 802.11 Wi-Fi standard vulnerability

WooCommerce’s serious vulnerability allows unauthorized wordpress website takeover

Apache Tomcat vulnerability leaks application session cookie to attackers

Critical vulnerabilities in SAP with CVSS score > 9.5

Hacking WPA1, WPA2, and WPA3 using 802.11 Wi-Fi standard vulnerability

Best open source tool for cyber incident detection in Microsoft Azure, Azure Active Directory, and Microsoft 365

5 best practices for securing identity and access management (IAM) systems

‘Decider’ an open-source tool that helps to generate MITRE ATT&CK mapping reports

Top 8 Free Tools for security testing and audit of your Kubernetes cluster in 2022

3 Techniques that allow bypassing phishing emails through Cisco Secure Email Gateway and are being actively used by ransomware gangs

RedEye: A great opensource cyber security Log Visualization tool for Red and Blue teams

How to easily spoof mac address automatically and be more anonymous

How to Use Advanced Network Intelligence Toolkit for Pentesting: badKarma

Tutorial for pentesting Android apps using the free ZANTI toolkit

Mispadu Banking Trojan Is Stealing Millions From Victims In Chile, Mexico, Peru And Portugal

The new black version of Lockbit ransomware is even more destructive and difficult to detect

Busted! Netwire malware infrastructure used to illegally steal data from computers seized

New infostealer malware S1ideload infects systems of government & manufacturing companies

DoppelPaymer Ransomware gang shuts down, members arrested by Police

Cyber Security Channel

Nigeria spends more than any other African country in spying its citizens

How to Hack Bank’s Voice Recognition System – Voice Biometrics with DeepFake Voice Cloning

Step by step process of hacking ATMs using black box. ATM jackpotting