Connect with us
Microsoft has urged customers to take action following the discovery of an Azure Cloud vulnerability allowing remote account takeover in Cosmos DB. Disclosed by the Wiz...
A remote code execution (RCE) vulnerability in a network video recorder (NVR) manufactured by Annke could result in a complete compromise of the IoT device. The critical flaw...
Microsoft has warned thousands of Azure customers that a now-fixed critical vulnerability found in Cosmos DB allowed any user to remotely take over other users’ databases...
A security vulnerability in popular dating app Bumble enabled attackers to pinpoint other users’ precise location. Bumble, which has more than 100 million users worldwide, emulates...
A Russian cybersecurity firm subject to US government sanctions has hailed the restoration of vulnerability credits to its security researchers after they were mysteriously removed from security advisories...
Ethreum project is urging developers to apply a hotfix to squash a high-severity vulnerability. The chain-split vulnerability tracked as CVE-2021-39137, impacts “Geth,” the official Golang implementation of the Ethereum protocol. Such...
A clever UPS phishing campaign utilized an XSS vulnerability in UPS.com to push fake and malicious ‘Invoice’ Word documents. The phishing scam was first discovered by...
Organizations using security appliances from Sophos have been advised to make sure their devices are up to date after a researcher disclosed the details of a...
Critical vulnerabilities in elFinder, the popular open source web file manager, can enable unauthenticated attackers to execute arbitrary PHP code on servers hosting elFinder’s back-end PHP connector. JavaScript-based...
A vulnerability in the Universal Plug-and-Play (UPnP) service of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to execute...
Recent Comments