Flaw

A New SolarWinds Flaw Likely Had Let Hackers Install SUPERNOVA Malware

Dec 27, 2020 by iHash Leave a Comment

An authentication bypass vulnerability in the SolarWinds Orion software may have been leveraged by adversaries as zero-day to deploy the SUPERNOVA malware in target environments. According to an advisory published yesterday by the CERT Coordination Center, the SolarWinds Orion API that's used to interface with all other Orion system monitoring and management products suffers … [Read more...] about A New SolarWinds Flaw Likely Had Let Hackers Install SUPERNOVA Malware

2-Factor Authentication Bypass Flaw Reported in cPanel and WHM Software

Nov 25, 2020 by iHash Leave a Comment

cPanel, a provider of popular administrative tools to manage web hosting, has patched a security vulnerability that could have allowed remote attackers with access to valid credentials to bypass two-factor authentication (2FA) protection on an account. The issue, tracked as "SEC-575" and discovered by researchers from Digital Defense, has been remedied by the company in … [Read more...] about 2-Factor Authentication Bypass Flaw Reported in cPanel and WHM Software

Critical Unpatched VMware Flaw Affects Multiple Corporates Products

Nov 24, 2020 by iHash Leave a Comment

VMware has released temporary workarounds to address a critical vulnerability in its products that could be exploited by an attacker to take control of an affected system. "A malicious actor with network access to the administrative configurator on port 8443 and a valid password for the configurator admin account can execute commands with unrestricted privileges on the … [Read more...] about Critical Unpatched VMware Flaw Affects Multiple Corporates Products

Researchers Warn of Critical Flaw Affecting Industrial Automation Systems

Nov 19, 2020 by iHash Leave a Comment

A critical vulnerability uncovered in Real-Time Automation's (RTA) 499ES EtherNet/IP (ENIP) stack could open up the industrial control systems to remote attacks by adversaries. RTA's ENIP stack is one of the widely used industrial automation devices and is billed as the "standard for factory floor I/O applications in North America." "Successful exploitation of this … [Read more...] about Researchers Warn of Critical Flaw Affecting Industrial Automation Systems

New Unpatched Bluetooth Flaw Lets Hackers Easily Target Nearby Devices

Sep 10, 2020 by iHash Leave a Comment

Bluetooth SIG—an organization that oversees the development of Bluetooth standards—today issued a statement informing users and vendors of a newly reported unpatched vulnerability that potentially affects hundreds of millions of devices worldwide.Discovered independently by two separate teams of academic researchers, the flaw resides in the Cross-Transport Key Derivation (CTKD) … [Read more...] about New Unpatched Bluetooth Flaw Lets Hackers Easily Target Nearby Devices

New PIN Verification Bypass Flaw Affects Visa Contactless Payments

Sep 8, 2020 by iHash Leave a Comment

Even as Visa issued a warning about a new JavaScript web skimmer known as Baka, cybersecurity researchers have uncovered an authentication flaw in the company's EMV enabled payment cards that permits cybercriminals to obtain funds and defraud cardholders as well as merchants illicitly.The research, published by a group of academics from the ETH Zurich, is a PIN bypass attack … [Read more...] about New PIN Verification Bypass Flaw Affects Visa Contactless Payments

Cisco Issues Warning Over IOS XR Zero-Day Flaw Being Targeted in the Wild

Sep 1, 2020 by iHash Leave a Comment

Cisco has warned of an active zero-day vulnerability in its router software that's being exploited in the wild and could allow a remote, authenticated attacker to carry out memory exhaustion attacks on an affected device. "An attacker could exploit these vulnerabilities by sending crafted IGMP traffic to an affected device," Cisco said in an advisory posted over the weekend."A … [Read more...] about Cisco Issues Warning Over IOS XR Zero-Day Flaw Being Targeted in the Wild

TeamViewer Flaw Could Let Hackers Steal System Password Remotely

Aug 10, 2020 by iHash Leave a Comment

If you are using TeamViewer, then beware and make sure you're running the latest version of the popular remote desktop connection software for Windows.TeamViewer team recently released a new version of its software that includes a patch for a severe vulnerability (CVE 2020-13699), which, if exploited, could let remote attackers steal your system password and eventually … [Read more...] about TeamViewer Flaw Could Let Hackers Steal System Password Remotely

Apple Touch ID Flaw Could Have Let Attackers Hijack iCloud Accounts

Aug 5, 2020 by iHash Leave a Comment

Apple earlier this year fixed a security vulnerability in iOS and macOS that could have potentially allowed an attacker to gain unauthorized access to a user's iCloud account.Uncovered in February by Thijs Alkemade, a security specialist at IT security firm Computest, the flaw resided in Apple's implementation of TouchID (or FaceID) biometric feature that authenticated users to … [Read more...] about Apple Touch ID Flaw Could Have Let Attackers Hijack iCloud Accounts

Researchers Reveal New Security Flaw Affecting China’s DJI Drones

Jul 24, 2020 by iHash Leave a Comment

Cybersecurity researchers on Thursday revealed security issues in the Android app developed by Chinese drone-maker Da Jiang Innovations (DJI) that comes with an auto-update mechanism that bypasses Google Play Store and could be used to install malicious applications and transmit sensitive personal information to DJI's servers.The twin reports, courtesy of cybersecurity firms … [Read more...] about Researchers Reveal New Security Flaw Affecting China’s DJI Drones

« Previous Page

JBL Flip 6 Portable Bluetooth Speaker (Open Box) for $74

Navee V25 300W Foldable e-Scooter for $299

Smart Tracker Includes Key Ring – Works with Apple Find My App (2-Pack) for $34

Harmony Premium Plan Lifetime Subscription for $99

Lenovo 11.6" 100e Chromebook 2nd Gen (2019) MediaTek MT8173C 4GB RAM 16GB eMMC (Refurbished) for $54