Over 30,000 private and government official US organizations have been compromised in a Microsoft Exchange Server exploit campaign. According to recent reports, four vulnerabilities…
Vulnerabilities
CIRA Canadian Shield down: CIRA DNS filtering vulnerable to SSL on iOS
An update to the iOS has been pushed by the CIRA Canadian Shield developers that fix the prospective MitM issue A security gap has…
ObliqueRAT Trojan Variants Sneaking via Images Documents
The infamous ObliqueRAT Trojan is now camouflaging itself as harmless photo and image documents on compromised websites The ObliqueRAT i.e the Oblique Remote Access…
RIPE NCC Internet registry reports a credential-stuffing attack
Last month, internet registry RIPE NCC Access reported a ‘Credential-Stuffing’ attack that affected its single-sign-on (SSO) platform. According to RIPES, though no SSO accounts…
Cyber Breach infests Malaysia Airlines for nine long years
In a peculiar revelation of cyber breach events, Malaysia airlines recently reported a cybersecurity attack that compromised the data from their frequent flyer campaign.…
Microsoft bug bounty rewards $50,000 for account hijack vulnerability
Microsoft bug bounty program has granted a free security analyst $50,000 as a component of its bug bounty program for revealing a glitch that…
Jailbreaking Tool ‘unc0ver’ using kernel vulnerability iOS compatible
The well-known jailbreaking tool “unc0ver” has been revised in a version for iOS compatibility after Apple came forward with a vulnerability that was being…
Node.js Package Library Patches Severe Command Injection Vulnerability
Popular Node.js package library systeminformation has recently patched a severe command injection vulnerability in the repository that could have left applications jeopardized. Systeminformation is…
Phishing Attacks Defraud 10,000 FedEx and DHS Express Targets
FedEx and DHL Express have recently been subjected to large-scale phishing attacks, with a combined 10,000 victims targeted, in the favor of poaching the…
Cisco Recognizes & Resolves Major Authority Bypass Vulnerability in MSO
In an advisory released on Wednesday, Cisco declared that they have addressed a maximum severity bypass vulnerability, tracked as CVE-2021-1388 having a 10/10CVSS base…