Tag: security bug

Magecart Attackers Pioneer Persistent E-Commerce Backdoor

Cyber Security April 5, 2024

Magecart attackers have a new trick: Stashing persistent backdoors within e-commerce websites that are capable of pushing malware automatically.According to researchers at Sansec, the...

Apple Security Bug Opens iPhone, iPad to RCE

Cyber Security March 26, 2024

Session Takeover Bug in AWS Apache Airflow Reveals Larger Cloud Risk

Cyber Security March 21, 2024

Aave unpauses V2 and V3 markets after addressing critical security bug

Blockchain November 13, 2023

CVSS 4.0 Offers Significantly More Patching Context

Cyber SecurityNovember 7, 2023

The latest version of the Common Vulnerability Scoring System (CVSS version 4.0), released last week, should enable organizations to better assess and manage the...

Critical Citrix Bug Exploited as a Zero-Day, ‘Patching Is Not Enough’

Cyber SecurityOctober 18, 2023

A critical security vulnerability in Citrix NetScaler patched last week is under active attack — and has been since at least August.Making matters worse,...

Critical Citrix Bug Exploited as a Zero-Day, ‘Patching Is Not Enough’

Cyber SecurityOctober 18, 2023

A critical security vulnerability in Citrix NetScaler patched last week is under active attack — and has been since at least August.Making matters worse,...

Fake WinRAR PoC Exploit Conceals VenomRAT Malware

Cyber SecuritySeptember 20, 2023

In a new twist on the cybercrime penchant for trojanizing things, a threat actor recently pounced upon a "hot" vulnerability disclosure to create a...

Critical Security Bug Opens Cisco BroadWorks to Complete Takeover

Cyber SecuritySeptember 8, 2023

A critical security vulnerability in Cisco's BroadWorks unified collaboration and messaging platform could pave the way for complete takeover of the platform, and the...

Using WinRAR? Be sure to patch against these code execution bugs…

Cyber SecurityAugust 23, 2023

by Paul Ducklin The venerable RAR program, short for Roshal’s Archiver after its original creator, has been popular in file...

MOVEit Transfer Faces Another Critical Data-Theft Bug

Cyber SecurityJuly 7, 2023

Yet another critical SQL injection vulnerability has been disclosed and patched in Progress Software's MOVEit Transfer software — the fourth such flaw revealed in...

MOVEit Transfer Faces Another Critical Data-Theft Bug

Cyber SecurityJuly 7, 2023

Yet another critical SQL injection vulnerability has been disclosed and patched in Progress Software's MOVEit Transfer software — the fourth such flaw revealed in...

Patchless Cisco Flaw Breaks Cloud Encryption for ACI Traffic

Cyber SecurityJuly 6, 2023

Cisco has announced that a high-severity flaw in its data center switching gear could allow threat actors to read and modify encrypted traffic —...

Microsoft Was Unable To Fix A Security Error With Windows 11

Cyber SecurityMay 19, 2023

Tyler Cross Published on: May 19, 2023 Microsoft admitted recently that it was unable to fix a problem...

Google Debuts Quality Ratings for Security Bug Disclosures

Cyber SecurityMay 19, 2023

Google and Android will now assess device vulnerability disclosure reports based on the level of information that bug hunters provide in order to encourage...