Vulnerabilities & Exploits
- February 27, 2018A new campaign exploiting CVE-2018-4878 involves the use of malicious spam — specifically with a spam email that with an embedded link that directs the recipient to a Microsoft Word lure document.
- February 26, 2018We delved into 2017’s most notable threats to see what lies ahead in the mobile landscape, and what users and organizations can do to navigate it in 2018 and beyond.
- February 02, 2018In a security alert posted on its website on January 31, The South Korean Computer Emergency Response Team (KR-CERT) warned of a zero-day vulnerability in Adobe Flash player that could be maliciously exploited.
- February 01, 2018New vulnerabilities in a gas station software that could allow attackers to pull off a variety of malicious attacks, which includes shutting down fuel pumps, hijacking credit card payments, and taking control of systems connected to a gas station.
- January 23, 2018In a security-related incident, a security researcher discovered a bug that allows an attacker to bypass the Uber app's two-factor authentication (2FA) feature.
- January 19, 2018A discovered bug dubbed as ChaiOS can cause the iMessage app to crash or reboot repeatedly.
- January 16, 2018Cybercriminals are already taking advantage of the news surrounding Meltdown and Spectre. SmokeLoader malware was spotted spreading via a fake patch for the vulnerabilities .
- January 11, 2018Rockwell Automation released a firmware update for its MicroLogix 1400 programmable logic controllers (PLCs) to resolve a potentially serious vulnerability.
- January 08, 2018Multiple vulnerabilities and a hard-coded backdoor were discovered in Western Digital’s My Cloud network attached storage (NAS) devices that could allow remote attackers to gain unrestricted root access.