Vulnerabilities (Page 52)

Critical vulnerability in Sudo would allow privilege escalations on affected UNIX systems

On: January 26, 2021

Sudo maintainers announced a fix for a vulnerability that could have allowed local users to obtain root privileges on Unix-like systems without any authentication. Sudo is an UNIX program withRead More →

Critical vulnerabilities affecting Honeywell OPC UA Tunneller; update now

On: January 25, 2021

In: Vulnerabilities

Cybersecurity specialists reported the finding of at least four vulnerabilities affecting Honeywell OPC UA Tunneller. According to the report, successful exploitation of these flaws would allow malicious hackers to accessRead More →

Critical security flaw in SAP Solution Manager; exploit available on GitHub

On: January 25, 2021

In: Vulnerabilities

Information security specialists reported that a group of threat actors has released an exploit to abuse a critical security flaw in SAP enterprise software. This exploit is capable of compromisingRead More →

Zero-day vulnerabilities affect SonicWall VPN solutions: How to mitigate the exploitation risk?

On: January 25, 2021

In: Vulnerabilities

SonicWall security team has issued a security alert related to a hacking group exploiting a zero-day flaw in its virtual private network (VPN) solutions that could allow the deployment ofRead More →

Critical vulnerability in SAP Solution Manager puts thousands of organizations at risk

On: January 21, 2021

In: Vulnerabilities

Relevant cybercriminal groups have been performing massive online scans to detect servers affected by a critical SAP vulnerability for which a fully functional exploit already exists. The flaw was trackedRead More →

Critical vulnerability in Shazam exposes over 100 million users’ location data

On: January 19, 2021

In: Vulnerabilities

A British security specialist reported finding a critical vulnerability in Shazam, the popular music recognition app, which would allow threat actors to extract a user’s location data by sending aRead More →

Critical vulnerabilities expose millions of routers with Dnsmasq; update now

On: January 19, 2021

In: Vulnerabilities

Cybersecurity specialists published a report regarding the finding of at least 7 vulnerabilities detected in a popular DNS software package deployed on routers and access points in all kinds ofRead More →

Critical vulnerabilities enable code execution in Siemens products; update now

On: January 18, 2021

In: Vulnerabilities

A Siemens security report revealed that some of its Digital Industries Software solutions for product development have more than 20 vulnerabilities that could be exploited for arbitrary code execution byRead More →

Big-IP critical flaw allows the launching of multiple cyberattacks

On: January 15, 2021

In: Vulnerabilities

Positive Technologies researcher Nikita Ambramov reported the finding of a critical vulnerability in F5 Networks BIG-IP products that could be exploited to launch denial of service (DoS) attacks remotely. AmbramovRead More →

Critical vulnerability in Apache Velocity impact government websites

On: January 15, 2021

In: Vulnerabilities

Cybersecurity specialists revealed the finding of a cross-site scripting (XSS) vulnerability in Apache Velocity Tools that could be exploited by threat actors to compromise U.S. government websites, including NASA. TheRead More →

Vulnerabilities (Page 52)

Critical vulnerability in Sudo would allow privilege escalations on affected UNIX systems

Critical vulnerabilities affecting Honeywell OPC UA Tunneller; update now

Critical security flaw in SAP Solution Manager; exploit available on GitHub

Zero-day vulnerabilities affect SonicWall VPN solutions: How to mitigate the exploitation risk?

Critical vulnerability in SAP Solution Manager puts thousands of organizations at risk

Critical vulnerability in Shazam exposes over 100 million users’ location data

Critical vulnerabilities expose millions of routers with Dnsmasq; update now

Critical vulnerabilities enable code execution in Siemens products; update now

Big-IP critical flaw allows the launching of multiple cyberattacks

Critical vulnerability in Apache Velocity impact government websites

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

How Safe is Your TinyProxy? Step-by-Step Guide to Exploiting Tinyproxy’s Zero Day Vulnerability

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Hacking with MagicDots: Exploiting Dots & Spaces in Filenames/Pathnames for Permanent Admin Rights

Compromising Cryptographic Key Security Through PuTTY: A Deep Dive into CVE-2024-31497

How to hack a LG Smart TV via vulnerabilities in LG WebOS?

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

The API Security Checklist: 10 strategies to keep API integrations secure

11 ways of hacking into ChatGpt like Generative AI systems

How to send spoof emails from domains that have SPF and DKIM protections?

Silent Email Attack CVE-2023-35628 : How to Hack Without an Email Click in Outlook

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

Is Your etcd an Open Door for Cyber Attacks? How to Secure Your Kubernetes Clusters & Nodes

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Inside the Scam: How Ransomware Gangs Fool You with Data Deletion Lies!

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]