Gitpaste-12 Worm Widens Set of Exploits in New Attacks

The worm returned in recent attacks against web applications, IP cameras and routers. Continue reading Gitpaste-12 Worm Widens Set of Exploits in New Attacks

Exploits for vBulletin zero-day released, attacks are ongoing

The fix for CVE-2019-16759, a remote code execution vulnerability in vBulletin that was patched in September 2019, is incomplete, security researcher Amir Etemadieh has discovered. The discovery and his publishing of PoC and full exploits spurred attac… Continue reading Exploits for vBulletin zero-day released, attacks are ongoing

vBulletin fixes critical vulnerability, patch immediately!

If you’re using vBulletin to power your online forum(s), you should implement the newest security patches offered by the developers as soon as possible. The patches fix CVE-2020-12720, a vulnerability affecting versions 5.5.6, 5.6.0 and 5.6.1 wit… Continue reading vBulletin fixes critical vulnerability, patch immediately!

Hackers Breach ZoneAlarm’s Forum Site — Outdated vBulletin to Blame

ZoneAlarm, an internet security software company owned by Israeli cybersecurity firm Check Point Technologies, has suffered a data breach exposing data of its discussion forum users, the company confirmed The Hacker News.

With nearly 100 million downl… Continue reading Hackers Breach ZoneAlarm’s Forum Site — Outdated vBulletin to Blame

Hacker wants $300 for 250,000 records stolen from sex worker site

In spite of prostitution being legal in the Netherlands, this could lead to the same type of blackmail attempts/suicide from Ashley Madison. Continue reading Hacker wants $300 for 250,000 records stolen from sex worker site

vBulletin Releases Patch Update for New RCE and SQLi Vulnerabilities

After releasing a patch for a critical zero-day remote code execution vulnerability late last month, vBulletin has recently published a new security patch update that addresses 3 more high-severity vulnerabilities in its forum software.

If left unpatc… Continue reading vBulletin Releases Patch Update for New RCE and SQLi Vulnerabilities

Comodo Forums Hack Exposes 245,000 Users’ Data — Recent vBulletin 0-day Used

If you have an account with the Comodo discussion board and support forums, also known as ITarian Forum, you should change your password immediately.

Cybersecurity company Comodo has become one of the major victims of a recently disclosed vBulletin 0-… Continue reading Comodo Forums Hack Exposes 245,000 Users’ Data — Recent vBulletin 0-day Used