Category: Vulnerabilities

Threats & Malware, Vulnerabilities

Hackers Earn $275,000 for Vulnerabilities in U.S. Army Systems

January 17, 2020

Via: Security Week

The challenge ran between October 9 and November 15, 2019, and was the result of a partnership between the Defense Digital Service, the U.S. Department of Defense (DoD), and hacker-powered pentesting platform HackerOne. The second Army bug bounty program saw […]

Threats & Malware, Vulnerabilities

Processor Vulnerabilites Put Virtual Workloads at Risk

January 14, 2020

Via: Dark Reading

Back in January 2018, a consortium of security researchers from organizations including Google, Cyberus Technology and several universities disclosed two ominously-named vulnerabilities found in nearly all modern computer processors. These vulnerabilities broke open the floodgates for research into flaws in […]

Application security, Security, Threats & Malware, Vulnerabilities

Mozilla patches actively exploited Firefox zero-day

January 9, 2020

Via: Help Net Security

Mozilla has patched a Firefox zero-day vulnerability (CVE-2019-17026) that is being exploited in attacks in the wild and is urging Firefox and Firefox ESR users to update their installations as soon as possible. About CVE-2019-17026 A day after Mozilla released […]

Cyber-crime, Malware, Network security, Threats & Malware, Vulnerabilities

PCs still running Windows 7 will soon be significantly more at risk of ransomware

January 7, 2020

Via: Help Net Security

PCs still running when Windows 7 reaches end of life on the 14th of January will be significantly more at risk of ransomware, Veritas Technologies has warned. According to experts, 26% of PCs are expected to still be running the […]

Network security, Threats & Malware, Vulnerabilities

TikTok Banned By U.S. Army Over China Security Concerns

January 3, 2020

Via: Threat Post

With backlash swelling around TikTok’s relationship with China, the United States Army this week announced that U.S. soldiers can no longer have the social media app on government-owned phones. TikTok, a social media app used to create and share short […]

Threats & Malware, Vulnerabilities

Cisco addresses several flaws in its DCNM product

January 3, 2020

Via: Security Affairs

Cisco has released software updates that address several critical and high-severity vulnerabilities in its Data Center Network Manager (DCNM) product. All the vulnerabilities were reported to Cisco through Trend Micro’s Zero Day Initiative (ZDI) and Accenture’s iDefense service by the […]

Network security, Security, Threats & Malware, Vulnerabilities

Remote Command Execution Vulnerability Affects Many D-Link Routers

January 2, 2020

Via: Security Week

Miguel Méndez Zúñiga and Pablo Pollanco of Telefónica Chile recently disclosed the details of the vulnerabilities in a couple of blog posts published on Medium. In addition to technical details and PoC code, they have posted videos showing how each […]

Cloud security, Security, Vulnerabilities

Why Cloud, Collaboration Breed Insider Threats

December 19, 2019

Via: Threat Post

When it comes to facing insider threats, many enterprises seem to be suffering from a type of organizational cognitive dissonance – as in, they hold two, seemingly contradictory beliefs when it comes to the cloud and the collaboration tools that […]

Network security, Threats & Malware, Vulnerabilities

Alexa, Google Home Eavesdropping Hack Not Yet Fixed

December 17, 2019

Via: Threat Post

Months after researchers disclosed a new way to exploit Alexa and Google Home smart speakers to spy on users, those same researchers now warn that Amazon and Google have yet to create effective ways to prevent the eavesdropping hack. The […]


Critical Bug in WordPress Plugins Open Sites to Hacker Takeovers

December 16, 2019

Via: Threat Post

Security researchers are warning users of two WordPress plugins – made by Brainstorm Force – that they need to patch a “major” vulnerability that could allow hackers to gain administrative access to any website using the plugins. According to Brainstorm […]