A SpiderLabs researcher has published an analysis of WinZip 24 network communications in which he detected the sending of update verification requests in unencrypted HTTP format. This could allow threatRead More →
A number of firmware flaws in D-Link VPN routers could expose these devices to zero-day attacks exploitation. These vulnerabilities have not been fully fixed, so threat actors could launch rootRead More →
Cisco security teams released multiple security updates to correct newly detected authentication flaws in Cisco Security Manager, whose exploit would allow threat actors to execute malicious code on affected systems.Read More →
Cybersecurity specialists have reported finding two critical vulnerabilities in the TL-WPA4220 WiFi signal extender, developed by TP-Link. According to the report, failures allow the execution of arbitrary commands and theRead More →
Cybersecurity specialists report finding a vulnerability in GNOME Display Manager (gdm) that could allow users with reduced privileges to create elevated accounts on Ubuntu systems. Although certain requirements for theRead More →
Cybersecurity specialists report finding two PowerShell backdoors never detected and apparently used in attacking a Kuwait-based organization’s Microsoft Exchange servers. These attacks are related to a hacker group known asRead More →
A hacking campaign has compromised voice over Internet protocol (VoIP) phone systems used in more than 1,000 companies around the world in order to make illicit profits from the saleRead More →
The developers of Discord, a popular VoIP and chat platform, have fixed a critical flaw that exposed users to remote code execution attacks. Masato Kinugawa, a cybersecurity specialist and participantRead More →
A Tripwire security firm report reveals the detection of a critical security flaw in the SonicWall VPN portal that could be exploited to lock a device and prevent users fromRead More →