Phishers Abuse Microsoft Voicemail Service to Trick Users
Avanan spots campaign leveraging Dynamic 365 Customer Voice Read More
World’s Most Expensive Observatory Floored by Cyber-Attack
ALMA suspends astronomical observations Read More
Crime in the metaverse – police face new challenges in a virtual world
The metaverse is evolving, and tech giants like Meta (the firm previously known as Facebook), Microsoft, and Google are betting big that you'll want to...
DSA-5270 ntfs-3g – security update
Yuchen Zeng and Eduardo Vela discovered a buffer overflow in NTFS-3G, a read-write NTFS driver for FUSE, due to incorrect validation of some of the...
CVE-2021-39077 (security_guardium)
"IBM Security Guardium 10.5, 10.6, 11.0, 11.1, 11.2, 11.3, and 11.4 stores user credentials in plain clear text which can be read by a local...
CVE-2021-36906
Multiple Insecure Direct Object References (IDOR) vulnerabilities in ExpressTech Quiz And Survey Master plugin <= 7.3.6 on WordPress. Read More
Mondelez and Zurich’s NotPetya cyber-attack insurance settlement leaves behind no legal precedent
Multinational food and beverage company Mondelez International and Zurich American Insurance have settled their multiyear litigation surrounding the cyberattack coverage – or lack of such...
CVE-2021-37823 (opencart)
OpenCart 3.0.3.7 allows users to obtain database information or read server files through SQL injection in the background. Read More
CVE-2020-22820
MKCMS V6.2 has SQL injection via the /ucenter/repass.php name parameter. Read More
CVE-2020-22819
MKCMS V6.2 has SQL injection via the /ucenter/active.php verify parameter. Read More