Smashing Security podcast #332: Nudes leak at the plastic surgery, Mali mail mix-up, and WormGPT
Dr 90210 finds himself in a sticky situation after his patients' plastic surgery photos AND more end up in the hands of hackers, emails to...
xen-4.16.4-2.fc37
FEDORA-2023-1bd1171606 Packages in this update: xen-4.16.4-2.fc37 Update description: x86/AMD: Zenbleed [XSA-433, CVE-2023-20593] Read More
CVE-2022-31455
* A cross-site scripting (XSS) vulnerability in Truedesk v1.2.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into a...
USN-6256-1: Linux kernel (IoT) vulnerabilities
Jiasheng Jiang discovered that the HSA Linux kernel driver for AMD Radeon GPU devices did not properly validate memory allocation in certain situations, leading to...
CVE-2022-31456
A cross-site scripting (XSS) vulnerability in Truedesk v1.2.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the team...
Following claims by two ransomware groups, Yamaha confirms cyberattack
Yamaha Corporation, the world's largest producer of musical equipment, has confirmed that has suffered a "cybersecurity incident" during which hackers gained unauthorised access to its...
USN-6255-1: Linux kernel (Intel IoTG) vulnerabilities
It was discovered that the IP-VLAN network driver for the Linux kernel did not properly initialize memory in some situations, leading to an out-of- bounds...
Russia Sends Cybersecurity CEO to Jail for 14 Years
The Russian government today handed down a treason conviction and 14-year prison sentence on Iyla Sachkov, the former founder and CEO of one of Russia’s...
Repeatable VEC Attacks Target Critical Infrastructure
Likelihood of a firm falling victim to a VEC attack rose from 45% in June 2022 to 70% in May 2023 Read More
VMware Patches Vulnerability Exposing Admin Credentials
The issue arises from the logging of credentials in hex encoding in platform system audit logs Read More