Vulnerabilities (Page 64)

Flaw in Apache Tomcat forces server to perform DoS attacks against itself & the network

On: June 29, 2020

Specialists from a cyber security consulting firm report finding of a medium severity vulnerability in Apache Tomcat, the servlet container developed under the Apache Software Foundation’s Jakarta project. According toRead More →

9 critical flaws in FreeRDP allow reading messages on Android phones remotely

On: June 29, 2020

In: Vulnerabilities

Security testing course specialists report finding at least nine security vulnerabilities in FreeRDP, a free implementation of Remote Desktop Protocol (RDP) released under Apache license. According to the report, theRead More →

Philips Ultrasound flaw allows modifying any ultrasound in real-time remotely

On: June 26, 2020

In: Vulnerabilities

A group of specialists from a malware analysis course reports the finding of a vulnerability in multiple ultrasound systems developed by technology firm Philips. According to the report, the successfulRead More →

14 zero day flaws in CentOS allow installing ransomware in the network: no patch available

On: June 26, 2020

In: Vulnerabilities

Vulnerability assessment specialists reported the finding of at least 14 security vulnerabilities in CentOS, a free hosting management web portal designed to facilitate the management of dedicated servers and VPS.Read More →

Apache Spark flaw allows defacing website y backdoor creation in server

On: June 25, 2020

In: Vulnerabilities

According to network perimeter security specialists, Apache Spark developers have just officially released a remote code execution risk alert that affects their software. The vulnerability was tracked as CVE-2020-9480 andRead More →

17 flaws in Cisco Small Business routers allow creating permanent backdoor

On: June 25, 2020

In: Vulnerabilities

Computer forensics specialists report the discovery of multiple vulnerabilities in multiple Cisco VR Series routers. Successful exploitation of these flaws would allow the deployment of multiple malicious scenarios such asRead More →

Zero day flaws in Honeywell ControlEdge PLC, RTU for critical infrastructure: No patch available

On: June 24, 2020

In: Vulnerabilities

Vulnerability assessment specialists report the discovery of multiple vulnerabilities in ControlEdge and RTU, security products developed by Honeywell. Successful exploit of these vulnerabilities could allow threat actors to obtain passwordsRead More →

BitDefender flaw allows hacking your phone or laptop remotely

On: June 23, 2020

In: Vulnerabilities

Sometimes security tools can cause more problems than they solve. According to vulnerability assessment specialists, a remote code execution (RCE) vulnerability was found in Safepay a web browser component developedRead More →

3 critical flaws in Fortinet allow network wide ransomware infection

On: June 22, 2020

In: Vulnerabilities

Computer forensics specialists report the finding of three vulnerabilities in some Fortinet products (FortiSIEM, FortiDeceptor and FortiWLC). Successfully exploiting these security flaws would allow threat actors to launch ransomware infections,Read More →

3 critical reflected cross-site scripting (XSS) flaws found on Facebook

On: June 22, 2020

In: Vulnerabilities

Despite investing millions of dollars in security, Facebook reports the continued discovery of vulnerabilities that could expose its users’ information. A vulnerability assessment specialist revealed the finding of three cross-siteRead More →

Vulnerabilities (Page 64)

Flaw in Apache Tomcat forces server to perform DoS attacks against itself & the network

9 critical flaws in FreeRDP allow reading messages on Android phones remotely

Philips Ultrasound flaw allows modifying any ultrasound in real-time remotely

14 zero day flaws in CentOS allow installing ransomware in the network: no patch available

Apache Spark flaw allows defacing website y backdoor creation in server

17 flaws in Cisco Small Business routers allow creating permanent backdoor

Zero day flaws in Honeywell ControlEdge PLC, RTU for critical infrastructure: No patch available

BitDefender flaw allows hacking your phone or laptop remotely

3 critical flaws in Fortinet allow network wide ransomware infection

3 critical reflected cross-site scripting (XSS) flaws found on Facebook

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Hacking with MagicDots: Exploiting Dots & Spaces in Filenames/Pathnames for Permanent Admin Rights

Compromising Cryptographic Key Security Through PuTTY: A Deep Dive into CVE-2024-31497

How to hack a LG Smart TV via vulnerabilities in LG WebOS?

How to Check if a Linux Distribution is Compromised by the XZ Utils Backdoor in 6 Steps

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

The API Security Checklist: 10 strategies to keep API integrations secure

11 ways of hacking into ChatGpt like Generative AI systems

How to send spoof emails from domains that have SPF and DKIM protections?

Silent Email Attack CVE-2023-35628 : How to Hack Without an Email Click in Outlook

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

Is Your etcd an Open Door for Cyber Attacks? How to Secure Your Kubernetes Clusters & Nodes

CVSS 4.0 Explained: From Complexity to Clarity in Vulnerability Assessment

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Inside the Scam: How Ransomware Gangs Fool You with Data Deletion Lies!

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]