Top

Category: Vulnerabilities


Threats & Malware, Vulnerabilities

Vulnerability in Amazon Photos Android App Exposed User Information

June 30, 2022

Via: Security Week

With more than 50 million downloads, Amazon Photos offers cloud storage, allowing users to store photos and videos at their original quality, as well as to print and share photos, and to display them on multiple Amazon devices. In November […]


Threats & Malware, Vulnerabilities

Brocade Vulnerabilities Could Impact Storage Solutions of Several Major Companies

June 30, 2022

Via: Security Week

According to Broadcom, the Brocade SANnav storage area network (SAN) management application is affected by nine vulnerabilities. Patches have been made available for these security holes. Six of them impact third-party components such as OpenSSL, Oracle Java and NGINX, and […]


Threats & Malware, Virus & Malware, Vulnerabilities

EMEA continues to be a hotspot for malware threats

June 30, 2022

Via: Help Net Security

Ransomware detections in the first quarter of this year doubled the total volume reported for 2021, according to the latest quarterly Internet Security Report from the WatchGuard Threat Lab. Researchers also found that the Emotet botnet came back in a […]


Threats & Malware, Vulnerabilities

New UnRAR Vulnerability Could Let Attackers Hack Zimbra Webmail Servers

June 29, 2022

Via: The Hacker News

A new security vulnerability has been disclosed in RARlab’s UnRAR utility that, if successfully exploited, could permit a remote attacker to execute arbitrary code on a system that relies on the binary. The flaw, assigned the identifier CVE-2022-30333, relates to […]


Threats & Malware, Vulnerabilities

New ‘FabricScape’ Bug in Microsoft Azure Service Fabric Impacts Linux Workloads

June 29, 2022

Via: The Hacker News

Cybersecurity researchers from Palo Alto Networks Unit 42 disclosed details of a new security flaw affecting Microsoft’s Service Fabric that could be exploited to obtain elevated permissions and seize control of all nodes in a cluster. The issue, which has […]


Threats & Malware, Vulnerabilities

Mitre shared 2022 CWE Top 25 most dangerous software weaknesses

June 29, 2022

Via: Security Affairs

The presence of these vulnerabilities within the infrastructure of an organization could potentially expose it to a broad range of attacks. “Welcome to the 2022 Common Weakness Enumeration (CWE™) Top 25 Most Dangerous Software Weaknesses list (CWE™ Top 25). This […]


Threats & Malware, Vulnerabilities

Firefox 102 fixes address bar spoofing security hole (and helps with Follina!)

June 29, 2022

Via: Naked Security

This month’s scheduled Firefox release is out, with the new 102.0 version patching 19 CVE-numbered bugs. Despite the large number of CVEs, the patches don’t include any bugs already being exploited in the wild (known in the jargon as zero-days), […]


Hacker, Threats & Malware, Vulnerabilities

Threat actors stole $100M in crypto assets from Harmony

June 27, 2022

Via: Security Affairs

Last week threat actors have stolen $100 million in cryptocurrency from the Blockchain company Harmony. The company reported the incident to the authorities, the FBI is investigating the cyber heist with the help of several cybersecurity firms. Harmony’s Horizon Bridge […]


Threats & Malware, Vulnerabilities

US Agencies Warn Organizations of Log4Shell Attacks Against VMware Products

June 24, 2022

Via: Security Week

Tracked as CVE-2021-44228, the infamous Log4Shell vulnerability that was disclosed in November 2021 impacts the widely used Apache Log4j logging tool, and is described as a critical-severity flaw leading to remote code execution. Exploitation of the vulnerability started less than […]


Threats & Malware, Vulnerabilities

Discovery of 56 OT Device Flaws Blamed on Lackluster Security Culture

June 22, 2022

Via: Threat Post

Researchers discovered 56 vulnerabilities affecting devices from 10 operational technology (OT) vendors, most of which they’ve attributed to inherent design flaws in equipment and a lax approach to security and risk management that have been plaguing the industry for decades, […]