Threat actors encrypt Windows PCs by breaking into publicly available Remote Desktop services using the relatively new Venus Ransomware. Venus Ransomware has since encrypted…
remote command execution
Grails Have A Serious Security Flaw That Could Allow Remote Code Execution
The open-source web app framework’s maintainers advise patching all versions, even those that are not thought to be susceptible. A significant security flaw has…
Remote Code Execution is Caused via Prototype Pollution in Blitz.js.
A critical prototype pollution vulnerability in Blitz.js, a JavaScript online application framework, has been patched to prevent remote code execution (RCE) on Node.js servers.…
Zyxel rolls out patches for critical firewall OS command injection vulnerability
Zyxel has patched a serious flaw plaguing Zyxel firewall devices, which allows unauthenticated and remote attackers to execute code arbitrarily. “A command injection vulnerability…
D-Link VPN routers fixed for bugs of Remote command
A certainly found vulnerability in D-link firmware driving various switches or routers with VPN passthrough usefulness permits hackers to gain full access for the…
Git LFS Vulnerability can give attackers access to Remote Code Execution
Security Researcher Dawid Golunski has discovered a new critical vulnerability in an open-source extension of Git called Git LFS (Large File Storage). Git LFS…
Vulnerabilities in Sunlogin- Hackers Backdoored Windows
A new hacking campaign has emerged that exploits the vulnerabilities in Sunlogin. It is to deploy the Sliver post-exploitation toolkit and launch Windows Bring…
Vendor Argues The Severity Of The RCE Bug In The Firewall Plugin
IHTeam’s security experts have discovered a RCE bug in a plugin for the pfSense firewall system. Although the problematic pfBlockerNG plugin is not loaded…
The Moobot Botnet is Pursuing Your D-Link Router if it isn’t Fixed
The Mirai malware botnet variant known as ‘MooBot’ has re-emerged in a new attack wave that started early last month. This targets vulnerable D-Link…
Microsoft fixes vulnerability plaguing Azure Synapse and Data Factory
On Monday, Microsoft said it patched a vulnerability plaguing Azure Synapse and Azure Data Factory. Further, Microsoft said, if the vulnerability was successfully exploited,…