Twitter API Flaw Exposed Users Messages to Wrong Developers For Over a Year
The security and privacy issues with APIs and third-party app developers are something that’s not just Facebook is dealing with. A bug in …
Browsing: Flaws
Flaw in 4GEE WiFi Modem Could Leave Your Computer Vulnerable
A high-severity vulnerability has been discovered in 4G-based wireless 4GEE Mini modem sold by mobile operator EE that could allow an …
Intel Patches Firmware Flaw That Leaks ME Encryption Keys
Intel has had a challenging time of late on the vulnerability front. Computer security researchers have dug deeply into the chip …
Flaws in firmware expose almost any modern PC to Cold Boot Attacks
A team of security researchers demonstrated that the firmware running on nearly all modern computers is vulnerable to cold boot attacks. A …
Cisco Issues Security Patch Updates for 32 Flaws in its Products
Cisco today released thirty security patch advisory to address a total of 32 security vulnerabilities in its products, three of which are …
Knock, knock: Digital key flaw unlocks door control systems
Attackers could be able to unlock doors in office buildings, factories and other corporate buildings at will, thanks to a flaw in a popular …
Cryptojackers Exploit Critical Apache Struts Flaw
A critical Apache Struts vulnerability disclosed last week is being actively exploited in the wild to maliciously install a popular …
Hundreds of Banks Exposed from Fiserv Flaw
A flaw in the web platform of Fiserv Inc., a technology services provider for financial institutions, reportedly exposed personal and …
Fiserv Flaw Exposed Customer Data at Hundreds of Banks
Fiserv, Inc., a major provider of technology services to financial institutions, just fixed a glaring weakness in its Web platform that …
Critical Flaw in Fortnite Android App Lets Hackers Install Malware
Security researchers from Google have publicly disclosed an extremely serious security flaw in the first Fortnite installer for Android …
Admins Urged: Stop Everything and Patch New Apache Struts Flaw
Security experts are warning of another critical CVSS 10.0 vulnerability in Apache Struts, the framework that resulted in a major breach at …
Serious Apache Struts 2 vulnerability allows hackers to execute remote code
The Apache Software Foundation has issued an urgent patch for a serious vulnerability in Struts 2 that allows hackers to execute remote …
Apache’s latest SNAFU – Struts normal, all fscked up: Web app framework needs urgent patching
Another critical security hole has been found in Apache Struts 2, requiring an immediate update. The vulnerability – CVE-2018-11776 – …
Expert discovered a Critical Remote Code Execution flaw in Apache Struts (CVE-2018-11776)
Maintainers of the Apache Struts 2 open source development framework has released security updates to address a critical remote code …
Critical remote code execution flaw in Apache Struts exposes the enterprise to attack
The Apache Software Foundation has patched a critical security vulnerability which affects all versions of Apache Struts 2. More security …
Ghostscript flaw could allow attackers to take remote control of systems – and there’s no fix yet
A vulnerability in Ghostscript, a widely used interpreter for Abode PostScript and PDF page description languages could allow attackers to …
New Apache Struts RCE Flaw Lets Hackers Take Over Web Servers
Semmle security researcher Man Yue Mo has disclosed a critical remote code execution vulnerability in the popular Apache Struts web …
Critical Flaws in Ghostscript Could Leave Many Systems at Risk of Hacking
Google Project Zero’s security researcher has discovered a critical remote code execution (RCE) vulnerability in Ghostscript—an open …
Windows VBScript Engine Zero-day Flaw used by Darkhotel Hackers Group To Compromise Vulnerable Systems
A new zero-day exploit for Windows VBScript Engine discovered that belongs to North Korean cyber criminals gang called Darkhotel which is …
Exploring, Exploiting Active Directory Admin Flaws
No matter how many tools you buy or how many alerts flood the SOC, your security strategy is only as strong as its administration. If …
UK Researchers Warn of Serious WordPress PHP Flaw
A British researcher has published details of a serious WordPress flaw left unfixed for over a year which could allow for complete system …
Foreshadow Attacks – experts found 3 new Intel CPU side-channel flaws
Security researchers disclosed the details of three new speculative execution side-channel attacks that affect Intel processors. The new …
Foreshadow Attacks — 3 New Intel CPU Side-Channel Flaws Discovered
2018 has been quite a tough year for Intel. While the chip-maker giant is still dealing with Meltdown and Spectre processor …
Microsoft Fixes 60 Flaws Including Two Zero-Days
Microsoft has fixed 60 vulnerabilities this monthly update round, including two zero-days and patches for the newly disclosed Intel L1TF …
Son Of Spectre: Intel Discloses Foreshadow Exploit Of Secure Enclave In Skylake And Kaby Lake CPUs
If you thought Spectre and Meltdown were bad, there are new exploits that have the potential to seriously compromise modern Intel …
Oracle: Apply Out-of-Band Patch for Database Flaw ASAP
Oracle this week urged organizations to immediately patch a critical vulnerability in multiple versions of Oracle database that gives …
Flaws in Mobile Point of Sale Readers Displayed at Black Hat
Mobile point of sale (MPOS) systems have changed the way business is done for small vendors around the world. These small devices from …
‘Foreshadow’ Flaw Undermines the Intel CPU Secure Enclave
this has been the year of Spectre and Meltdown, not only because the chip vulnerabilities—first publicly disclosed in January—were so …
macOS Zero-day Flaw Allow Hackers to Bypass Kernel Protection by Invisible Mouse Click Attack
ero-day vulnerability that discovered in macOS High Sierra OS allows let an attacker access the kernel using invisible mouse clicks. …
Flaws in Pre-Installed Apps Expose Millions of Android Devices to Hackers
Bought a new Android phone? What if I say your brand new smartphone can be hacked …