A critical auth bypass security flaw was patched last week. But it is still being used in the field, according to Fortinet’s confirmation today.…
security vulnerability
security vulnerability
A Xalan-J vulnerability could lead to arbitrary code execution
Different SAML implementations make use of open-source initiatives. Researchers caution that a flaw in the Apache project Xalan-J used by numerous SAML implementations leads…
General
Update Zoom For Mac Right Away To Prevent The Root-Access Flaw
It’s time for a manual update if you use Zoom on a Mac. The most recent version to the video conferencing software closes a…
cybersecurity attacks
Titan M Attacking with Only One Byte
Introduction Titan M, a security chip included by Google in its Pixel smartphones starting with the Pixel 3, was examined over the course of…
Cybercrime
MANGA Exploiting TP-Link Vulnerability
The MANGA(aka Dark Mirai) botnet operators’ exploitation of a vulnerability in the TP-Link TL-WR4840N EU V5 has come to light. The vulnerability allows hackers…
attackers
VMware releases patches for two flaws
VMware released updates to plug two loopholes in vCenter Server and Cloud Foundation that can be exploited to obtain sensitive information. The acute vulnerability…
Cybercrime
Zoom vulnerability by Positive Technologies
The U.S-sanctioned Positive Technologies has underscored three vulnerabilities in the zoom, Zoom vulnerability that can be used for crashing or hijacking on-prem parts of…
cyberattack
Pysa Ransomware attacks on K-12 Schools
Ransomware assaults against the schooling domain nearly multiplied from 2019 to 2020. With the beginning of the COVID-19 pandemic, the numbers continue to get…
Cybersecurity News
Trend Micro advises users of Zero-day assaults against their products
Security firms Trend Micro is cautioning its clients of assaults taking advantage of zero-day vulnerabilities in its Apex One and Apex One as a…
Cybersecurity
Linux Systemd security bug exposed
Qualsys has tracked down a terrible Linux systemd security gap that can empower any unprivileged client to crash a Linux framework. The fix is…