security vulnerability – WindowsTechs.com

Cisco Patches Two Dangerous Zero-Day Vulnerabilities

Posted on October 24, 2023 by Megan Crouse

The vulnerabilities, one of which was rated critical and one of which was rated highly severe, affect Cisco IOS XE software. Continue reading Cisco Patches Two Dangerous Zero-Day Vulnerabilities→

Video Encoding Library Leaves Chrome, Firefox and More Open to Zero-Day Attack

Posted on September 29, 2023 by Megan Crouse

Google and Mozilla have patched the zero-day vulnerability, which originates in the libvpx library. Continue reading Video Encoding Library Leaves Chrome, Firefox and More Open to Zero-Day Attack→

A Security Vulnerability Management Guide

Posted on March 17, 2021 by Tiffany Jachja

Living in a container-native world is not easy. Containers have a reputation for being a point of entry for security vulnerabilities for many organizations. In 2015, according to a research paper, over 40% of Docker images distributed through Docker H… Continue reading A Security Vulnerability Management Guide→

PGMiner, Innovative Monero-Mining Botnet, Surprises Researchers

Posted on December 11, 2020 by Tara Seals

The malware takes aim at PostgreSQL database servers with never-before-seen techniques. Continue reading PGMiner, Innovative Monero-Mining Botnet, Surprises Researchers→

Critical, Unpatched Bugs Open GE Radiological Devices to Remote Code Execution

Posted on December 8, 2020 by Tara Seals

A CISA alert is flagging a critical default credentials issue that affects 100+ types of devices found in hospitals, from MRI machines to surgical imaging. Continue reading Critical, Unpatched Bugs Open GE Radiological Devices to Remote Code Execution→

VMware Rolls a Fix for Formerly Critical Zero-Day Bug

Posted on December 4, 2020 by Tara Seals

VMware has issued a full patch and revised the severity level of the NSA-reported vulnerability to “important.” Continue reading VMware Rolls a Fix for Formerly Critical Zero-Day Bug→

Cayman Islands Bank Records Exposed in Open Azure Blob

Posted on December 1, 2020 by Becky Bracken

An offshore Cayman Islands bank’s backups, covering a $500 million investment portfolio, were left unsecured and leaking personal banking information, passport data and even online banking PINs. Continue reading Cayman Islands Bank Records Exposed in Open Azure Blob→

Blackrota Golang Backdoor Packs Heavy Obfuscation Punch

Posted on November 24, 2020 by Lindsey O'Donnell

Blackrota is targeting a security bug in Docker, but is nearly impossible to reverse-analyze. Continue reading Blackrota Golang Backdoor Packs Heavy Obfuscation Punch→

Critical VMware Zero-Day Bug Allows Command Injection; Patch Pending

Posted on November 23, 2020 by Tom Spring

VMware explained it has no patch for a critical escalation-of-privileges bug that impacts both Windows and Linux operating systems and its Workspace One. Continue reading Critical VMware Zero-Day Bug Allows Command Injection; Patch Pending→

German COVID-19 Contact-Tracing Vulnerability Allowed RCE

Posted on November 19, 2020 by Becky Bracken

Bug hunters at GitHub Security Labs help shore up German contact tracing app security, crediting open source collaboration. Continue reading German COVID-19 Contact-Tracing Vulnerability Allowed RCE→