CVE-2020-21643
Cross Site Scripting (XSS) vulnerability in HongCMS 3.0 allows attackers to run arbitrary code via the callback parameter to /ajax/myshop. Read More
Hacking the Layoff Process
My latest book, A Hacker’s Mind, is filled with stories about the rich and powerful hacking systems, but it was hard to find stories of...
Cybercrime group FIN7 targets Veeam backup servers
Researchers warn that a financially motivated cybercrime group known as FIN7 is compromising Veeam Backup & Replication servers and deploying malware on them. It's not...
Ransomware Attack Disrupts IT Network at Hardenhuish School
At the time of writing, it is unclear whether the school paid the ransom Read More
CVE-2022-31643
A potential security vulnerability has been identified in the system BIOS for certain HP PC products which may allow loss of integrity. HP is releasing...
USN-6049-1: Netty vulnerabilities
It was discovered that Netty's Zlib decoders did not limit memory allocations. A remote attacker could possibly use this issue to cause Netty to exhaust...
Minecraft clones stealthily load ads on millions of Android devices
Boffins at McAfee have identified 38 Android apps in the Google Play store that unashamedly rip off the ever-popular gaming sensation Minecraft, but are actually...
Global Cyber Attacks Rise by 7% in Q1 2023
Check Point also said the education and research sector experienced the highest number of attacks Read More
Android Apps Fail to Protect User Data During Device Transfer
CloudSEK said that in some applications such as WhatsApp, attackers could also bypass 2FA Read More
cloud-init-23.1.2-1.fc38
FEDORA-2023-c17dde4052 Packages in this update: cloud-init-23.1.2-1.fc38 Update description: Update to 23.1.2 and fix CVE-2023-1786 Read More