Vulnerabilities

Severe WordPress Anti-Spam Plugin Vulnerabilities Put 200,000+ Sites at Risk of Remote Exploitation

Two severe vulnerabilities in the Spam Protection, Anti-Spam, and Firewall plugin for WordPress have been discovered, potentially enabling unauthenticated attackers to install malicious plugins...

admin - November 26, 2024

Vulnerabilities

Unveiling Overlooked Cybersecurity Weaknesses in IaC and PaC Ecosystems

In a startling revelation, cybersecurity specialists have uncovered two innovative assault methodologies targeting infrastructure-as-code (IaC) and policy-as-code (PaC) utilities such as HashiCorp's Terraform and...

admin - November 25, 2024

Vulnerabilities

Long-standing Security Flaws Unearthed in Ubuntu’s Needrestart Package

Long-standing security flaws have come to light in the needrestart package—an integral component of Ubuntu Server since version 21.04—that could grant local attackers root-level...

admin - November 20, 2024

Vulnerabilities

Exploitation of VMware vCenter and Kemp LoadMaster Vulnerabilities

Recent revelations spotlight the active exploitation of security loopholes within Progress Kemp LoadMaster and VMware vCenter Server, underscoring the urgency of addressing these now-patched...

admin - November 19, 2024

Vulnerabilities

Critical PostgreSQL Vulnerability Enables Exploitation of Environment Variables

In a significant cybersecurity disclosure, researchers have unveiled a high-impact flaw within PostgreSQL, the widely-utilized open-source database system. This vulnerability allows unauthorized individuals to...

admin - November 15, 2024

Vulnerabilities

Microsoft Addresses 90 New Vulnerabilities, Including Actively Exploited NTLM and Task Scheduler Flaws

On Tuesday, Microsoft disclosed the presence of two critical security vulnerabilities within the Windows NT LAN Manager (NTLM) and Task Scheduler, both of which...

admin - November 13, 2024

1...8910...51 Page 9 of 51

Cyber security news for all

New PondRAT Malware Disguised in Python Packages Targets Software Developers

Discord Unveils DAVE Protocol for Comprehensive Encryption in Audio and Video Communication

GitLab Resolves Critical SAML Authentication Bypass Vulnerability in CE and EE Versions

SpyLoan Malware Embedded in Android Loan Apps Exposes 8 Million Users

Google Halts Risky Android App Sideloading in India, Elevating Fraud Prevention

Watering Hole Attack on Kurdish Platforms Unleashes Harmful APKs and Spyware

Vulnerabilities

Recent Articles

The Hidden Risk of Non-Human Identities: Why Secrets Management Must Evolve

New Malware Campaigns Target Android and iOS Users with Fake Apps

Weekly Cyber Threat Insights: Windows 0-Day, VPN Exploits, AI Abuse, Antivirus Hijacking, and More

New BPFDoor Malware Controller Facilitates Hidden Lateral Movement on Linux Systems

New Vulnerabilities Found in Rack::Static Allow Unauthorized Access and Data Manipulation on Ruby Servers

EDITOR PICKS

The Hidden Risk of Non-Human Identities: Why Secrets Management Must Evolve

New Malware Campaigns Target Android and iOS Users with Fake Apps

Weekly Cyber Threat Insights: Windows 0-Day, VPN Exploits, AI Abuse, Antivirus Hijacking, and More

POPULAR POSTS

A complete OSINT tutorial on finding someone’s personal information

Chaos Computer Club discovered access to 5 million records

Mailto links can pose an unexpected security risk

ABOUT US

POPULAR CATEGORY

FOLLOW US