vulnerability

17-Year-Old Critical ‘Wormable’ RCE Vulnerability Impacts Windows DNS Servers

Jul 15, 2020 by iHash Leave a Comment

Cybersecurity researchers today disclosed a new highly critical "wormable" vulnerability—carrying a severity score of 10 out of 10 on the CVSS scale—affecting Windows Server versions 2003 to 2019.The 17-year-old remote code execution flaw (CVE-2020-1350), dubbed 'SigRed' by Check Point, could allow an unauthenticated, remote attacker to gain domain administrator privileges over … [Read more...] about 17-Year-Old Critical ‘Wormable’ RCE Vulnerability Impacts Windows DNS Servers

Chrome zero-day vulnerability | Kaspersky official blog

Nov 5, 2019 by iHash Leave a Comment

Thanks to the Kaspersky Exploit Prevention subsystem in our products, we recently detected an exploit — a malicious program letting attackers gain unauthorized access to the computer — through a vulnerability in the Google Chrome browser. It used a zero-day vulnerability, that is, one that was yet unknown to the developers. It was assigned the identifier CVE-2019-13720. We … [Read more...] about Chrome zero-day vulnerability | Kaspersky official blog

Insights Regarding the Cisco REST API Container for IOS XE Software Authentication Bypass Vulnerability

Aug 30, 2019 by iHash Leave a Comment

This blog post was authored by Eugenio Iavarone, Cisco PSIRT. On August 28th, 2019, Cisco published a Security Advisory titled “Cisco REST API Container for Cisco IOS XE Software Authentication Bypass Vulnerability”, disclosing an internally found vulnerability which affects the Cisco REST API container for Cisco IOS XE. An exploit could be used to bypass authentication on … [Read more...] about Insights Regarding the Cisco REST API Container for IOS XE Software Authentication Bypass Vulnerability

New Bluetooth Vulnerability Lets Attackers Spy On Encrypted Connections

Aug 14, 2019 by iHash Leave a Comment

Over a billion Bluetooth-enabled devices, including smartphones, laptops, smart IoT devices, and industrial devices, have been found vulnerable to a high severity vulnerability that could allow attackers to spy on data transmitted between the two devices.The vulnerability, assigned as CVE-2019-9506, resides in the way 'encryption key negotiation protocol' lets two Bluetooth … [Read more...] about New Bluetooth Vulnerability Lets Attackers Spy On Encrypted Connections

Account Takeover Vulnerability Found in Popular EA Games Origin Platform

Jun 26, 2019 by iHash Leave a Comment

A popular gaming platform used by hundreds of millions of people worldwide has been found vulnerable to multiple security flaws that could have allowed remote hackers to takeover players' accounts and steal sensitive data.The vulnerabilities in question reside in the "Origin" digital distribution platform developed by Electronic Arts (EA)—the world's second-largest gaming … [Read more...] about Account Takeover Vulnerability Found in Popular EA Games Origin Platform

Critical Flaw in Cisco Elastic Services Controller Allows Full System Takeover

May 7, 2019 by iHash Leave a Comment

Cisco has patched a critical flaw in its virtualized function automation tool, Cisco Elastic Services Controller. Source link … [Read more...] about Critical Flaw in Cisco Elastic Services Controller Allows Full System Takeover

Oracle WebLogic Exploit-fest Continues with GandCrab Ransomware, XMRig

May 6, 2019 by iHash Leave a Comment

Snowballing attacks using a recently patched critical bug show no sign of abating. Source link … [Read more...] about Oracle WebLogic Exploit-fest Continues with GandCrab Ransomware, XMRig

Amid Bug Bounty Hype, Sometimes Security is Left in the Dust

May 6, 2019 by iHash Leave a Comment

Amidst the PR glitz and popularity of bug bounty programs, experts worry that actual smart security strategy is being left behind. Source link … [Read more...] about Amid Bug Bounty Hype, Sometimes Security is Left in the Dust

Dell Security Support Tool Harbors High-Severity Flaws

May 2, 2019 by iHash Leave a Comment

Dell has patched two high-severity vulnerabilities in its SupportAssist software meant to aid security issues for customers. Source link … [Read more...] about Dell Security Support Tool Harbors High-Severity Flaws

Cisco Warns of Critical Nexus 9000 Data Center Flaw

May 2, 2019 by iHash Leave a Comment

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter. Source link … [Read more...] about Cisco Warns of Critical Nexus 9000 Data Center Flaw

« Previous Page

JBL Flip 6 Portable Bluetooth Speaker (Open Box) for $74

Navee V25 300W Foldable e-Scooter for $299

Smart Tracker Includes Key Ring – Works with Apple Find My App (2-Pack) for $34

Harmony Premium Plan Lifetime Subscription for $99

Lenovo 11.6" 100e Chromebook 2nd Gen (2019) MediaTek MT8173C 4GB RAM 16GB eMMC (Refurbished) for $54