Top

Tag: vulnerabilities


Hacker, Threats & Malware, Vulnerabilities

New Threat Actor Fraudulently Buys Digital Certificates to Spread Malware

September 16, 2019

Via: Threat Post

Researchers have identified a new threat actor that is using impersonation fraud to purchase digital certificates that are then used for the spread of malware. Security firm ReversingLabs identified a bad actor that deceives certificate authorities into selling them legitimate […]


Data loss, Threats & Malware, Vulnerabilities

Serious Flaws in CODESYS Products Expose Industrial Systems to Remote Attacks

September 16, 2019

Via: Security Week

The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) last week published several advisories describing vulnerabilities in CODESYS products, many of which can be exploited remotely for arbitrary code execution, denial-of-service (DoS) attacks, and other purposes. 3S-Smart […]


Mobile, Network security, Security, Wireless security

Top Wi-Fi routers have major security flaws

September 11, 2019

Via: TechRadar

A security researcher from Trustwave has discovered vulnerabilities in several D-Link and Comba routers which could make it easy for cybercriminals to see usernames and passwords stored on the devices. Trustwave SpiderLabs’ Simon Kenin found a total of five security […]


Threats & Malware, Vulnerabilities

Chrome 77 Released with 52 Security Fixes

September 11, 2019

Via: Security Week

Thirty-six of all security fixes are for vulnerabilities reported by external researchers. These include one Critical bug, eight High severity issues, 17 Medium risk flaws, and 10 Low severity vulnerabilities. The most important of the patches addresses a Critical use-after-free […]


Vulnerabilities

WordPress 5.2.3 Patches Several XSS Vulnerabilities

September 5, 2019

Via: Security Week

WordPress developers on Thursday announced the availability of version 5.2.3, a maintenance and security release that includes 29 fixes and enhancements, along with several security patches. As far as security is concerned, WordPress 5.2.3 mostly patches cross-site scripting (XSS) vulnerabilities. […]


Vulnerabilities

WordPress Plugins Exploited in Ongoing Attack, Researchers Warn

August 26, 2019

Via: Threat Post

Researchers are warning of an ongoing campaign exploiting vulnerabilities in a slew of WordPress plugins. The campaign is redirecting traffic from victims’ websites to a number of potentially harmful locations. Impacted by the campaign is a plugin called Simple 301 […]


Malware

Asruex Malware Exploits Old vulnerabilities to Infect PDF, Word Docs

August 26, 2019

Via: Security Week

A recently observed variant of the Asruex backdoor acts as an infector by targeting old vulnerabilities in Microsoft Office and Adobe Reader and Acrobat 9.x, Trend Micro reports. Asruex was initially discovered in 2015 and was previously associated with the […]


Mobile, Threats & Malware, Vulnerabilities, Wireless security

Routers from well-known manufacturers vulnerable to cross-router data leaks

August 19, 2019

Via: Help Net Security

While many organizations and home networks use a host and guest network on the same router hardware to increase security, a new study by Ben-Gurion University indicates that routers from well-known manufacturers are vulnerable to cross-router data leaks through a […]


Network security, Threats & Malware, Vulnerabilities

Digital transformation helps companies work smarter yet makes them vulnerable to breaches

August 16, 2019

Via: Help Net Security

While digital transformation helps companies work smarter, there is a risk that the ongoing digitization may unlock a host of security vulnerabilities that can cost companies money, time, intellectual property, and customer trust, according to a Canon survey. All organizations […]


Mobile security, Vulnerabilities

Lenovo Warns of ThinkPad Bugs, One Unpatched

August 15, 2019

Via: Threat Post

Dozens of Lenovo’s flagship ThinkPad models are vulnerable to bugs ranging in severity from low to high. Two of the flaws are tied to industry-wide security bulletins, while a medium-severity flaw affects only Lenovo laptops but remains unpatched. The most […]