Exploit available for critical Fortinet auth bypass bug, patch now
Proof-of-concept exploit code is now available for a critical authentication bypass vulnerability affecting Fortinet's FortiOS, FortiProxy, and FortiSwitchManager appliances. [...]
Cyberattackers Spoof Google Translate in Unique Phishing Tactic
The campaign uses a combination of tactics and a common JavaScript obfuscation technique to fool both end users and email…
Microsoft October 2022 Patch Tuesday fixes zero-day used in attacks, 84 flaws
Today is Microsoft's October 2022 Patch Tuesday, and with it comes fixes for an actively exploited Windows vulnerability and a…
Critical VM2 flaw lets attackers run code outside the sandbox
Researchers are warning of a critical remote code execution flaw in 'vm2', a JavaScript sandbox library downloaded over 16 million…
Fortinet says critical auth bypass bug is exploited in attacks
Fortinet has confirmed today that a critical authentication bypass security vulnerability patched last week is being exploited in the wild.…
Intel confirms leaked Alder Lake BIOS Source Code is authentic
Intel has confirmed that a source code leak for the UEFI BIOS of Alder Lake CPUs is authentic and has…
Meta Flags Malicious Android, iOS Apps Affecting 1M Facebook Users
Some 400 mobile apps have posed as legitimate software on Google Play and the Apple App Store over the past…
Patch Now: Fortinet FortiGate & FortiProxy Contain Critical Vuln
Fortinet issued a customer advisory urging customers to apply its update immediately.
Fortinet warns admins to patch critical auth bypass bug immediately
Fortinet has warned administrators to update FortiGate firewalls and FortiProxy web proxies to the latest versions, which address a critical severity vulnerability. [...]
macOS Archive Utility Bug Lets Malicious Apps Bypass Security Checks
Exploit allows unsigned and unnotarized macOS applications to bypass Gatekeeper and other security, without notifying the user.