Security company Tenable found a new vulnerability (CVE-2019-10915) in the Siemens software platform TIA Portal, which is used to maintain industrial control systems for large critical infrastructure such as nuclear power plants. The researchers...
Recently, JIRA released a security bulletin to fix a server-side template injection vulnerability (CVE-2019-11581), affecting Jira Server and Jira Data Center. An attacker who successfully exploited the vulnerability could remotely execute code on the affected...
The Zoom for Mac version of well-known remote video conferencing software has been found by security researchers to have serious security vulnerabilities. An attacker could exploit this vulnerability to remotely turn on the target...
On July 9th, local time, Adobe officially released the July security update, which fixes multiple vulnerabilities in Adobe’s various products, including Adobe Bridge CC, Adobe Experience Manager, and Adobe Dreamweaver. Vulnerability Overview: Adobe Bridge...
Microsoft released the July security update patch on Tuesday, fixing 79 security issues from simple spoofing attacks to remote code execution. The products involved in .NET Framework, ASP.NET, Azure, Azure DevOps, Internet Explorer, Microsoft...
Recent researchers have recently discovered a vulnerability in a common open-source software for genomic analysis, which will lead to DNA-based medical diagnosis is vulnerable to cyber-attacks. Researchers at Sandia National Laboratories discovered the weakness...
Downloading .HTML files through a browser are usually phishing or scam, but researchers have found that sometimes it can be used to steal user files. The researchers found a 17-year-old security vulnerability in Firefox,...
Entering a specific string in iMessage and sending it to someone else can cause some weird things. We have reported many such accidental discoveries in the past, and fortunately, Apple usually completes bug fixes...
Google today released the 2019 July Android security patch, which fixes many of the most important security vulnerabilities recently discovered and other issues found in various Android components. This month’s Android security patch includes...
Earlier this year, a Google researcher discovered a security vulnerability in Secure Encrypted Virtualization (SEV) within AMD’s EPYC processor that allowed an attacker to obtain a security key and access an otherwise isolated virtual...
Recently, security researchers at the Mimecast Threat Center discovered a new vulnerability in the Microsoft Excel spreadsheet application, which has caused 120 million users to be vulnerable to cyber attacks. The researcher points out...
Charles Holmes, a security researcher at Atredis Partners, discovered a new vulnerability in Kubernetes that could allow an attacker to place a malicious container on a user’s workstation. This vulnerability affects Kubernetes’ kubectl command-line...
Recently, researchers from Check Point Research and CyberInt disclosed a vulnerability from the EA Origin service. Origin is a Steam-like digital distribution platform launched by EA. Since it is the only way to get...
Gatekeeper is a security tool on macOS system designed to ensure that only trusted software to run on the Mac. However, this application authentication feature has a security vulnerability that can be used to...
Dell SupportAssist has again a flaw. Software such as Support Assistant is mainly to help users automatically update drivers or contact technical support. Many manufacturers pre-install this type of software. The software itself has...
The 0-day vulnerability that Firefox just fixed was used to attack Coinbase employees. According to Philip Martin, a member of Coinbase security team, the attacker combination exploited two 0day vulnerabilities, one of which was a...
