Vulnerabilities & Exploits
- October 09, 2017Siemens recently issued an update that addresses a vulnerability found in one of their measuring devices that could potentially allow an attacker to bypass built-in authentication measures and take control of the machine.
- October 06, 2017Apple just released a supplemental update for the recently launched macOS High Sierra 10.13 operating system to address various bug fixes, including a potential vulnerability that leaks a user’s password.
- October 05, 2017Vulnerabilities in Apache Tomcat, which is deemed as the world's most widely used web application server used in over 70 percent of enterprise data centers, were uncovered.
- October 03, 2017A fake Wordpress plugin containing a backdoor and three zero-day vulnerabilities—all affecting the high-profile blogging platform WordPress—were recently discovered.
- September 27, 2017A security researcher found a remote code execution exploit that can potentially take over a range of devices with Broadcom Wi-Fi chips. The exploit is rooted in a vulnerability with the chip's firmware, similar to the Broadpwn exploit.
- September 19, 2017As we discover more details about the Equifax breach, other organizations can start improving their own data management and protection policies.
- September 14, 2017A remote access and command execution vulnerability (CVE-2016-10176) was recently seen actively exploited by RouteX, a malware that targets Netgear routers.
- September 13, 2017Using a Bluetooth-enabled device? You might want to check if you're leaving the Bluetooth connection turned on. It may be vulnerable to malware attacks that can remotely take over it.
- September 12, 2017Standard maintenance policies leave machinery vulnerable to attack. Both hardware and software are vulnerable when normal operations and security protocols are paused or switched to another mode so that updates or fixes can be applied.