Vulnerability Discovered in SolarWinds Web Help Desk Due to Hardcoded Credentials
Aug 22, 2024Ravie LakshmananSecurity Breach / Network Protection SolarWinds has released patches to fix a recent security vulnerability in its...
LakshmananVulnerability
Unauthorized Users Exploit PHP Weakness to Deploy Covert Msupedge Backdoor
August 20, 2024Ravie LakshmananWeakpoint / Risk Assessment An undocumented backdoor named Msupedge has been utilized in a cyber intrusion targeting...
Malicious Exploitation of PHP Weakness Leads to Infiltration by Stealthy Msupedge Malware
Aug 20, 2024Ravie LakshmananWeakness / Cybersecurity An undisclosed loophole known as Msupedge has been utilized in a cyber intrusion directed...
The written word about the TLS Boot Launch Attack on Azure Kubernetes Clusters
August 20, 2024Ravie LakshmananWeakness / Container Defense Cybersecurity experts have brought to light a flaw in Microsoft Azure Kubernetes Services...
Azure Kubernetes Clusters Face TLS Bootstrap Attack, Researchers Reveal
Aug 20, 2024Ravie LakshmananVulnerability / Container Security A newly discovered vulnerability in Microsoft Azure Kubernetes Services has been revealed by...
Alert about Critical Jenkins Weakness Used in Ransomware Incidents
Aug 20, 2024Ravie LakshmananWeakness / Ransomware The Cybersecurity and Infrastructure Security Agency (CISA) in the United States has included a...
Microsoft Resolves Critical Flaw Exploited by Lazarus Group from North Korea
Aug 19, 2024Ravie LakshmananVulnerability / Zero-Day A fresh security loophole in Microsoft Windows was leveraged as a zero-day by Lazarus...
Ivanti Virtual Traffic Manager Susceptible to Major Vulnerability Allowing Unauthorized Administration Access
Aug 14, 2024Ravie LakshmananWeakness / Network Defense Ivanti has launched security patches to address a severe flaw in Virtual Traffic...
GhostWrite: Recent T-Head CPU Glitches Expose Devices to Uncontrolled Attacks
Aug 13, 2024Ravie LakshmananVulnerability / Hardware Security A group of investigators from the CISPA Helmholtz Center for Information Security in...
New T-Head CPU Bugs Expose Devices to Unrestricted Attacks by GhostWrite
August 13, 2024Ravie LakshmananVulnerability / Hardware Security An architectural flaw affecting Chinese chip manufacturer T-Head's XuanTie C910 and C920 RISC-V...
Investigative Team Reveals 10 Defects in Google’s File Transfer Tool Quick Share
Aug 10, 2024Ravie LakshmananVulnerability / Mobile Security A total of 10 security weaknesses have been unveiled in Google's Quick Share...
Microsoft Alerts on Unfixed Office Weakness Resulting in Data Exposure
Aug 10, 2024Ravie LakshmananWeakness / Corporate Security Microsoft has revealed an unpatched zero-day in Office that, if exploited successfully, may...
Microsoft Uncovers Four OpenVPN Weaknesses Leading to Possible RCE and LPE
Aug 09, 2024Ravie LakshmananVulnerability / Network Security Four medium-severity security vulnerabilities in the open-source OpenVPN software were disclosed by Microsoft...
Alert from CISA Regarding Hackers Exploiting Outdated Cisco Smart Install Feature
Aug 09, 2024Ravie LakshmananVulnerability / Network Security The Cybersecurity and Infrastructure Security Agency (CISA) in the U.S. has alerted that...
0.0.0.0 Day: Vulnerability Affecting MacOS and Linux Devices Discovered by 18-Year-Old
Aug 08, 2024Ravie LakshmananVulnerability / Browser Security A modern "0.0.0.0 Day" has recently been found affecting prominent web browsers, which...
