In recent developments, a North Korean state-sponsored cyberattack campaign that was reportedly attacking security researchers has resurfaced with novel strategies and tricks up their…
High-risk Vulnerabilities
Cybersecurity
Linux Bugs enable hackers to bypass Spectre attack mitigations
On Monday, cybersecurity specialists revealed two new vulnerabilities in the operating system of Linux that, if effectively abused, could allow assailants to go around…
command injection attack
Netgear releases security fixes for product security vulnerabilities
Netgear, Inc the networking hardware producer company, has recently released security fixes for post-authentication command injection vulnerabilities in three of its products and DoS…
Cross site scripting
Cross Site Scripting (XSS) vulnerability affecting 7 million websites
In recent reports, it has been observed that a Cross Site Scripting [XSS vulnerability] on the Elementor plugin on WordPress page builder can facilitate…
Account Takeover
Microsoft bug bounty rewards $50,000 for account hijack vulnerability
Microsoft bug bounty program has granted a free security analyst $50,000 as a component of its bug bounty program for revealing a glitch that…
Account Takeover Vulnerability
Critical vulnerabilities discovered in Apache Unomi could lead to RCE
Last year’s top-level Apache Product for its easy integration and high scalability, Unomi is now under the threat of critical vulnerabilities. Recent reports tell…
Account Takeover Vulnerability
Double-extension vulnerability threatens Drupal sites
Last week saw a release of security updates by Drupal’s team for their Content Management System (CMS) to patch a Double-Extension vulnerability – CVE-2020-13671.…
Cybersecurity
Data breach at global cosmetic brand “Avon” leading to a major cybersecurity vulnerability
A world-renowned brand in cosmetics Avon has reported a critical breach in their data found on their web server. This was exposed publicly without…
Cybersecurity
Major vulnerabilities patched by VMware for their ESXi Hypervisor & SD-WAN Orchestrator
Multiple vulnerabilities have recently come to light VMware’s ESXi Hypervisor and the SD-WAN Orchestrator. The company has patched these vulnerabilities & released updates for…
Cisco Updates
Acute Fissures RCE in Cisco Security Manager
Cisco has posted a couple of safety advisories regarding some major defects in Cisco Security Manager (CSM) a week later the networking device maker…