by Jason | Oct 22, 2024 | News
Multiple popular mobile applications for iOS and Android come with hardcoded, unencrypted credentials for cloud services like Amazon Web Services (AWS) and Microsoft Azure Blob Storage, exposing user data and source code to security breaches. […] from...
by Jason | Oct 22, 2024 | News
The SEC has charged four companies—Unisys Corp, Avaya Holdings, Check Point Software, and Mimecast—for allegedly misleading investors about the impact of their breaches during the massive 2020 SolarWinds Orion hack. […] from...
by Jason | Oct 22, 2024 | News
Proof-of-concept exploit code is now public for a vulnerability in Microsoft’s Remote Registry client that could be used to take control of a Windows domain by downgrading the security of the authentication process. […] from...
by Jason | Oct 22, 2024 | News
VMware has released another security update for CVE-2024-38812, a critical VMware vCenter Server remote code execution vulnerability that was not correctly fixed in the first patch from September 2024. […] from...
by Jason | Oct 21, 2024 | News
Threat actors have been exploiting a vulnerability in the Roundcube Webmail client to target government organizations in the Commonwealth of Independent States (CIS) region, the successor of the former Soviet Union. […] from...
by Jason | Oct 21, 2024 | News
WordPress sites are being hacked to install malicious plugins that display fake software updates and errors to push information-stealing malware. […] from...
