Tag: vulnerability
State Actors Using MobileIron’s Vulnerability to Target UK Organizations: NCSC
In June 2020, MobileIron reported a critical RCE vulnerability registered under CVE-2020-15505. The vulnerability was fixed in its security update released on June 15,...
Vulnerability Alert: NCSC Warns U.K. Organizations About SharePoint Flaw
The National Cyber Security Centre (NCSC) in the U.K. has warned about a new remote code execution vulnerability (CVE–2020–16952), which affects Microsoft’s SharePoint products....
Update Before it’s Late: SonicWall VPN Portal Critical Flaw Could Result...
A stack-based buffer overflow flaw in SonicWall Network Security Appliance (NSA) could affect nearly 800,000 SonicWall VPNs across the globe, if not patched. According...
Protect the Connected! Will IoT Ever be 100% Secure?
The National Cybersecurity Awareness Month (NCSAM) for the U.S., which started on October 1, continues to raise awareness on the significance of cybersecurity in...
DHS and CISA Warn Federal Agencies to Patch “Zerologon” Flaw
The U.S. Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA) asked federal authorities to update all their Windows systems...
700,000 WordPress Users are at Risk Due to a Plugin Flaw
Millions of WordPress sites are at cyber risk after researchers discovered a zero-day vulnerability in WordPress’s File Manager plugin. The threat intelligence team from...
Cutting the Vulnerability Noise with Context
Chasing Patches
Why does 20% of hacking activity focus on vulnerabilities? Here’s why and it’s no surprise. The cycle of scanning and patching continues as...
Philips Release Patches for Vulnerabilities Affecting its Medical Devices
Electronics and health technology provider Philips has reported a vulnerability to the Cybersecurity and Infrastructure Agency (CISA) in its ultrasound medical devices, which allows...
IBM Fixes a Security Vulnerability in its Maximo Software
Security researchers from Positive Technologies discovered a critical vulnerability in IBM Maximo software. According to the researchers Arseny Sharoglazov and Andrey Medov, the vulnerability...
Vulnerability in Secure Document Wallet DigiLocker Could Bypass OTP Authentication
The Indian Government has addressed a critical vulnerability in India-based secure document wallet DigiLocker that could allow a remote attacker to bypass one-time passwords...