November 7, 2019
Via: Threat PostCyberattacks are on the rise and threatening our digital life and our most intimate information — but also our operational realities. Attacks on critical infrastructure such as power plants, water works, airports and the like (transportation ranks among the highest-value […]
September 23, 2019
Via: Security AffairsAtlassian released security updates to address critical vulnerabilities in Jira Service Desk and Jira Service Desk Data Center. One of the flaw can lead to information disclosure, while another critical vulnerability addressed by Atlassian could allow server-side template injection leading […]
Threats & Malware, Vulnerabilities
August 8, 2019
Via: Hot for SecurityNetworking behemoth Cisco has rolled out an important firmware update for users of its 220 Series smart switches after a researcher discovered three security flaws in the systems, including two deemed critical. In typical bug-reporting fashion, Switchzilla has published separate […]
July 12, 2019
Via: Help Net SecurityBusinesses are increasing the pace of investment in AI systems to defend against the next generation of cyberattacks, a study from the Capgemini Research Institute has found. Two thirds (69%) of organizations acknowledge that they will not be able to […]
May 8, 2019
Via: Threat PostA critical vulnerability in the Cisco Elastic Services Controller could allow an unauthenticated, remote attacker to take full control of impacted systems – merely by sending a crafted request. Cisco Elastic Services Controller is a virtual network functions manager, which […]
April 8, 2019
Via: Help Net SecurityManufacturing networks still running outdated technology could risk their intellectual property and production processes. The Trend Micro report, Securing Smart Factories: Threats to Manufacturing Environments in the Era of Industry 4.0, outlines the security dimension of a new era for […]
Application security, Network security
March 29, 2019
Via: Help Net SecurityCertificate-related outages harm the reliability and availability of vital network systems and services while also being extremely difficult to diagnose and remediate. Unfortunately, the vast majority of businesses routinely suffer from these events. In fact, according to the study released […]
Vulnerabilities, Wireless security
October 5, 2018
Via: Threat PostA staggering 83 percent of home and office routers have vulnerabilities that could be exploited by attackers. Of those vulnerable, over a quarter harbor high-risk and critical vulnerabilities, according to a report released this week by American Consumer Institute on […]
October 2, 2018
Via: Threat PostThe update includes a security bypass bug that enables privilege escalation. Adobe on Monday posted its regularly-scheduled October security update addressing 86 vulnerabilities – more than half of which were critical flaws – in Adobe Acrobat and Reader, its set […]
Vulnerabilities, Wireless security
May 9, 2018
Via: Threat PostSierra Wireless has patched two critical vulnerabilities for its range of wireless gateways that would leave the enterprise devices helpless to an array of remote threats, including the charms of the Reaper IoT botnet. The more critical of the two […]
April 10, 2018
Via: Security WeekLast October the United States Computer Emergency Readiness Team (US-CERT) published a technical alert on advanced persistent threat (APT) activity targeting energy and other critical infrastructure sectors. Recently, it was updated with new information uncovered since the original report, and […]
March 14, 2018
Via: Security AffairsMaintainers at the Samba project have released new versions of the popular open-source networking software to address two critical vulnerabilities that could be exploited by unprivileged remote attackers to launch DoS attacks against servers and change any users’ passwords, including […]
Email security, Vulnerabilities
March 13, 2018
Via: Security WeekMultiple critical vulnerabilities impacting SecurEnvoy SecurMail could result in an attacker being able to read encrypted emails and even delete or overwrite messages in an inbox. SecurEnvoy SecurMail was meant to provide businesses with secure email communications and claims to […]
February 16, 2018
Via: Security AffairsDell EMC addressed two critical vulnerabilities that affect the management interfaces for its VMAX enterprise storage systems. The Dell EMC’s VMAX Virtual Appliance (vApp) Manager is an essential component of a wide range of the enterprise storage systems. The first […]
Email security, Vulnerabilities
November 28, 2017
Via: Security WeekSerious vulnerabilities that can be exploited for remote code execution and denial-of-service (DoS) attacks have been found in the popular mail transfer agent (MTA) software Exim. Exim is an open source MTA for Unix systems created at the University of […]
November 16, 2017
Via: Threat PostCisco Systems issued a security advisory warning customers key products tied to its Cisco Voice Operating System software platform were vulnerable to an attack where an unauthenticated, remote hacker could gain unauthorized and elevated access to impacted devices. The Cisco […]
November 15, 2017
Via: Security WeekMicrosoft’s Patch Tuesday updates for November address more than 50 vulnerabilities, including 20 critical flaws affecting the company’s web browsers. A total of 53 CVE identifiers have been assigned to the security bugs addressed by Microsoft this month. None of […]
November 15, 2017
Via: Security WeekSAP released its November 2017 set of patches to address 22 vulnerabilities across its product portfolio, including three issues rated Very High priority (Hot News). The enterprise software maker included 13 patches in this month’s SAP Security Patch Day, to […]
March 3, 2017
Via: Security Affairs“A vulnerability in the Stream Control Transmission Protocol (SCTP) decoder of the Cisco NetFlow Generation Appliance (NGA) could allow an unauthenticated, remote attacker to cause the device to hang or unexpectedly reload, causing a denial of service (DoS) condition.” reads […]
July 25, 2016
Via: Help Net SecurityOver the past few years the issue of cyber-security and the threat of hackers stealing data has increased tenfold. Not a day goes by without a breach being reported of a retailer losing the credit card details, passwords or login […]