Vulnerabilities & Exploits

On January 17, Microsoft published an advisory (ADV200001) warning users about CVE-2020-0674, a remote code execution (RCE) vulnerability involving Microsoft’s Internet Explorer (IE) web browser.

Security researchers have released PoCs for critical vulnerability CurveBall (CVE-2020-0601).

Researchers uncovered an information disclosure vulnerability (designated as CVE-2019-1463) affecting Microsoft Access, which occurs when the software fails to properly handle objects in memory.

What is the current state of SCADA vulnerabilities? Staying informed is essential in the fight against exploits and cyberattacks with real-world consequences.

Researchers discovered a vulnerability in Android devices that allows malware to hijack legitimate apps. Using this vulnerability, cybercriminals could trick users into granting permissions to their malicious apps and provide openings for phishing pages.

Nasze prognozy związane z bezpieczeństwem na rok 2020 bazują na opiniach i analizach w zakresie rozwoju bieżących i nowych zagrożeń i technologii.

Our latest research explored threats to 5G connectivity — from SIMjacking, identity fraud, fake news, and poisoning machine learning rules to manipulating business decisions — and found that they can be addressed through an identity-based approach to security.

There are plans to update the BlueKeep Metasploit exploit after recent investigations revealed that the exploit triggers the blue screen of death in devices. This comes after recent reports of BlueKeep being used to install cryptocurrency miners on vulnerable

Details on the proof-of-concept (PoC) exploit for two unpatched, critical remote code execution (RCE) vulnerabilities in the network configuration management utility rConfig have been recently disclosed.