CVE-2020-22597
An issue in Jerrscript- project Jerryscrip v. 2.3.0 allows a remote attacker to execute arbitrary code via the ecma_builtin_array_prototype_object_slice parameter. Read More
CVE-2020-22153
File Upload vulnerability in FUEL-CMS v.1.4.6 allows a remote attacker to execute arbitrary code via a crafted .php file to the upload parameter in the...
CVE-2020-22152
Cross Site Scripting vulnerability in daylight studio FUEL- CMS v.1.4.6 allows a remote attacker to execute arbitrary code via the page title, meta description and...
CVE-2020-22151
Permissions vulnerability in Fuel-CMS v.1.4.6 allows a remote attacker to execute arbitrary code via a crafted zip file to the assests parameter of the upload...
Dublin Airport staff pay details stolen by hackers after MOVEit attack at third-party provider Aon
Staff at Dublin Airport have been warned that their personal data has fallen into the hands of hackers, following a data breach at a third-party...
USPTO’s API Flaw Leads to Years-Long Data Leak
Around 61,000 addresses, accounting for 3% of total applications, were impacted during that period Read More
Chinese Threat Actors Target Europe in SmugX Campaign
The attacks rely on novel delivery methods to deploy a variant of PlugX Read More
CIS Benchmarks Community Volunteer Spotlight: Jamie Scott
Jamie Scott has done a lot to support effective security controls for cyber defense as a volunteer of the CIS Benchmarks Community. Hear his story....
Meduza Stealer Targets Windows Users With Advanced Tactics
Uptycs discovered the new threat while monitoring dark web forums and Telegram channels Read More
Who’s Behind the DomainNetworks Snail Mail Scam?
If you’ve ever owned a domain name, the chances are good that at some point you’ve received a snail mail letter which appears to be...