Public Redis exploit used by malware gang to grow botnet
Threat analysts report having spotted a change in the operations of the Muhstik threat group, which has now switched to…
Western Digital My Cloud OS update fixes critical vulnerability
Western Digital has released new My Cloud OS firmware to fix a vulnerability exploited by bug hunters during the Pwn2Own…
Binarly Coordinates Patches for 3 Firmware Flaws With Dell
The latest three memory corruption flaws in Dell BIOS highlights the challenges of fixing firmware vulnerabilities.
Microsoft creates tool to scan MikroTik routers for TrickBot infections
The TrickBot trojan has just added one more trick up its sleeve, now using vulnerable IoT (internet of things) devices…
SolarWinds warns of attacks targeting Web Help Desk instances
SolarWinds warned customers of attacks targeting Internet-exposed Web Help Desk (WHD) instances and advised removing them from publicly accessible infrastructure…
NAS Vendor Says Several of Its Products Likely Contain Linux ‘Dirty Pipe’ Flaw
QNAP's disclosure this week is the latest reminder of the potentially wide impact of privilege escalation flaw in the Linux…
Google Chrome emergency update fixes zero-day exploited in attacks
Google has released Chrome 98.0.4758.102 for Windows, Mac, and Linux, to fix a high-severity zero-day vulnerability used by threat actors…
CISA orders federal agencies to update iPhones until Feb 25th
The US Cybersecurity and Infrastructure Security Agency (CISA) has added a new flaw to its catalog of vulnerabilities exploited in…
CISA orders federal agencies to update iPhones, Macs until Feb 25th
The US Cybersecurity and Infrastructure Security Agency (CISA) has added a new flaw to its catalog of vulnerabilities exploited in…
Apple patches new zero-day exploited to hack iPhones, iPads, Macs
Apple has released security updates to fix a new zero-day vulnerability exploited in the wild by attackers to hack iPhones, iPads,…