Recently, Cisco officially released a semi-annual security advisory report for Cisco IOS and IOS XE software, which announced 13 vulnerabilities in Cisco IOS Software and Cisco IOS XE software. A further report describes the vulnerabilities...
The US Federal Bureau of Investigation and the Department of Homeland Security issues cyber-attack alerts, primarily related to the disclosure of RDP Remote Desktop Protocol. Previously, security companies found that the underground hacking forum...
A study published by the American Consumer Institute Center found that 83% of home routers in 186 home routers were compromised due to known vulnerabilities in their firmware. The study used Insignary’s Clarity to scan...
Recently, the Bitcoin core team released necessary updates to fix DDoS vulnerabilities in the software. If exploited, the entire network will crash. Although blockchain and bitcoin are considered to be very secure emerging network...
The security team at Qualys Research Labs has released new detailed information and proof of concept (PoC) code for the Linux kernel vulnerability called “Mutagen Astronomy,” tracking number CVE-2018-14634, currently affecting only CentOS and...
Recently, Cisco officially updated the security notice of the IOS XE Software high-risk vulnerability (CVE-2018-0150). This update adds to the scope of the vulnerability. Cisco IOS XE Software running on the Services Virtual Router (ISRv)...
When you repeatedly click on a download link on Google Chrome, a pop-up prompt asks if you want to allow the corresponding website domain to download multiple files at the same time. Because if...
The Google Project Zero security team publicly disclosed a remote code execution vulnerability affecting the Microsoft Jet database engine on September 20. This vulnerability is considered to affect all supported versions of Windows (including server versions) and...
Recently, Rockwell Automation repaired a high-risk vulnerability in RSLinx Classic (CVE-2018-14829). RSLinx Classis is a software platform that Logix5000 Programmable Automation Controllers can use to collect a variety of Rockwell software applications. An attacker could remotely...
On September 19, Cisco officially issued a notice saying that there is a high-risk vulnerability (CVE-2018-0150) in IOS XE Software. The vulnerability originated from an unrecorded user account with a default username and password and...
Western Digital’s popular My Cloud line of network attached storage (NAS) devices have recently exposed a severe security breach that gives attackers full access to content on the device. Dutch security researcher Remco Vermeulen has...
GovPayNet is a privately held company based in Indianapolis, USA, providing online payment services to more than 2,300 US government agencies in 35 states. According to the latest information, approximately 14 million records containing receipt...
Researchers at security firm Tenable have recently revealed a zero-day vulnerability involving security cameras and surveillance devices, numbered CVE-2018-1149, codenamed “Peekaboo.” An attacker could exploit this vulnerability to execute code on the video surveillance system...
F-Secure security researchers rediscovered the cold boot attack, which affects almost all modern computers, allowing hackers of physical access devices to exploit the vulnerability to steal sensitive information from locked devices. Classic cold boot attacks can take...
On September 11th, Siemens officially issued a notice to fix various levels of security vulnerabilities in its different products. The affected products include SIMATIC WinCC OA, SCALANCE X switches and so on. Vulnerability Overview...
On September 11th, Adobe officially released the September security update, which fixes multiple vulnerabilities in its products, including Flash Player and ColdFusion. Vulnerability Overview: Adobe Flash Player Adobe has released a security update for...
