security vulnerabilities – WindowsTechs.com

New GoFetch Vulnerability in Apple’s M Chips Allows Secret Keys Leak on Compromised Computers

Posted on March 26, 2024 by Cedric Pernet

The GoFetch vulnerability, which affects Apple’s M series of chips, allows an attacker to steal secret keys from the Mac under certain conditions. Read tips on mitigating the GoFetch security threat. Continue reading New GoFetch Vulnerability in Apple’s M Chips Allows Secret Keys Leak on Compromised Computers→

New Ivanti Secure VPN Zero-Day Vulnerabilities and Patches

Posted on January 12, 2024 by Cedric Pernet

Read details about the new Ivanti VPN zero-day vulnerabilities, along with the latest information about patches. Most of the exposed VPN appliances are reported to be in the U.S., followed by Japan and Germany. Continue reading New Ivanti Secure VPN Zero-Day Vulnerabilities and Patches→

How to add the Docker Scout feature to the Docker CLI

Posted on July 3, 2023 by Jack Wallen

In this TechRepublic How to Make Tech Work tutorial, Jack Wallen shows you how to add the Docker Scout feature to the Docker CLI.
The post How to add the Docker Scout feature to the Docker CLI appeared first on TechRepublic.
Continue reading How to add the Docker Scout feature to the Docker CLI→

Phishing from threat actor TA473 targets US and NATO officials

Posted on April 7, 2023 by Cedric Pernet

These phishing campaigns are exploiting a Zimbra vulnerability and affecting internet-facing webmail services. Learn how to protect your organization from this security threat.
The post Phishing from threat actor TA473 targets US and NATO officials app… Continue reading Phishing from threat actor TA473 targets US and NATO officials→

Developer Education: Learning to Secure Code on Demand

Posted on July 15, 2021 by Katie Horne

Scanning your code base frequently to discover security risk early in development gives engineers more time time to address issues. But security risk is a challenging issue and most developers need more than just time.
Consider:

Over 60% of identified… Continue reading Developer Education: Learning to Secure Code on Demand→

Critical WordPress-Plugin Bug Found in ‘Orbit Fox’ Allows Site Takeover

Posted on January 13, 2021 by Tara Seals

Two security vulnerabilities — one a privilege-escalation problem and the other a stored XSS bug — afflict a WordPress plugin with 40,000 installs. Continue reading Critical WordPress-Plugin Bug Found in ‘Orbit Fox’ Allows Site Takeover→

RDP Attacks on the Rise During COVID-19 Pandemic

Posted on January 7, 2021 by Sharron Quadros

Enterprises forced to pivot to remote work environments in the wake of the COVID-19 pandemic may have exposed themselves to the potential for remote desktop protocol (RDP) attacks. When global lockdowns were initiated in early 2020, most organizations… Continue reading RDP Attacks on the Rise During COVID-19 Pandemic→

‘Amnesia:33’ TCP/IP Flaws Affect Millions of IoT Devices

Posted on December 8, 2020 by Lindsey O'Donnell

A new set of vulnerabilities has been discovered affecting millions of routers and IoT and OT devices from more than 150 vendors, new research warns. Continue reading ‘Amnesia:33’ TCP/IP Flaws Affect Millions of IoT Devices→

Electronic Medical Records Cracked Open by OpenClinic Bugs

Posted on December 1, 2020 by Tara Seals

Four security vulnerabilities in an open-source medical records management platform allow remote code execution, patient data theft and more. Continue reading Electronic Medical Records Cracked Open by OpenClinic Bugs→

Widespread Scans Underway for RCE Bugs in WordPress Websites

Posted on November 18, 2020 by Tara Seals

WordPress websites using buggy Epsilon Framework themes are being hunted by hackers. Continue reading Widespread Scans Underway for RCE Bugs in WordPress Websites→