Cisco Patches Two Dangerous Zero-Day Vulnerabilities
The vulnerabilities, one of which was rated critical and one of which was rated highly severe, affect Cisco IOS XE software. Continue reading Cisco Patches Two Dangerous Zero-Day Vulnerabilities
Collaborate Disseminate
The vulnerabilities, one of which was rated critical and one of which was rated highly severe, affect Cisco IOS XE software. Continue reading Cisco Patches Two Dangerous Zero-Day Vulnerabilities
Google and Mozilla have patched the zero-day vulnerability, which originates in the libvpx library. Continue reading Video Encoding Library Leaves Chrome, Firefox and More Open to Zero-Day Attack
Living in a container-native world is not easy. Containers have a reputation for being a point of entry for security vulnerabilities for many organizations. In 2015, according to a research paper, over 40% of Docker images distributed through Docker H… Continue reading A Security Vulnerability Management Guide
The malware takes aim at PostgreSQL database servers with never-before-seen techniques. Continue reading PGMiner, Innovative Monero-Mining Botnet, Surprises Researchers
A CISA alert is flagging a critical default credentials issue that affects 100+ types of devices found in hospitals, from MRI machines to surgical imaging. Continue reading Critical, Unpatched Bugs Open GE Radiological Devices to Remote Code Execution
VMware has issued a full patch and revised the severity level of the NSA-reported vulnerability to “important.” Continue reading VMware Rolls a Fix for Formerly Critical Zero-Day Bug
An offshore Cayman Islands bank’s backups, covering a $500 million investment portfolio, were left unsecured and leaking personal banking information, passport data and even online banking PINs. Continue reading Cayman Islands Bank Records Exposed in Open Azure Blob
Blackrota is targeting a security bug in Docker, but is nearly impossible to reverse-analyze. Continue reading Blackrota Golang Backdoor Packs Heavy Obfuscation Punch
VMware explained it has no patch for a critical escalation-of-privileges bug that impacts both Windows and Linux operating systems and its Workspace One. Continue reading Critical VMware Zero-Day Bug Allows Command Injection; Patch Pending
Bug hunters at GitHub Security Labs help shore up German contact tracing app security, crediting open source collaboration. Continue reading German COVID-19 Contact-Tracing Vulnerability Allowed RCE