A security report details the discovery of a GraphQL API authorization vulnerability in a major B2B financial platform whose exploitation would allow threat actors to conduct unauthorized transactions against theRead More →
Information security specialists reported the finding of two critical vulnerabilities affecting SolarWinds Serv-U. According to the report, successful exploitation of these flaws would allow the deployment of multiple attack scenarios.Read More →
A few days ago a Google Pixel user reported the discovery of an error in his device that prevented him from calling the emergency number 911. Via Reddit, the userRead More →
Information security specialists reported the finding of multiple vulnerabilities in Apache Traffic Server. According to the report, successful exploitation of these flaws would allow compromising the affected systems. Below areRead More →
One of the most important power grids in Australia was the target of a massive ransomware attack allegedly deployed by Chinese threat actors. According to the report, CS Energy networksRead More →
Cybersecurity specialists report the detection of at least 28 vulnerabilities in Qualcomm chipsets. According to the report, the successful exploitation of the flaws would allow the deployment of severe attackRead More →
A report by Markup says that Life360, a mobile family monitoring app used by around 30 million people worldwide, is selling some data collected in its systems, mainly those associatedRead More →
Cybersecurity specialists report that, for some years now, a hacker has been running malicious servers throughout the Tor network in what appears to be an attempt to deanonymize users ofRead More →
Pip-audit is a tool developed in collaboration with Google for scanning Python environments and detecting possible known security flaws. According to cybersecurity experts, Pip-audit uses the PyPi JSON API forRead More →