vulnerability Microsoft Releases Emergency Windows Updates for 2 RCE Bugs Microsoft urgently released 2 out-of-band software updates for Windows 10 and Windows Server 2019 editions. Find out more about the remote code execution vulnerabilities. Mishka Grey 2 Jul 2020 • 2 min read
vulnerability High Severity NVIDIA Vulnerabilities Affect Windows and Linux Drivers NVIDIA Drivers Vulnerability exploit Window and Linux machines. Upto 12 high severity bugs found. Learn how these can affect you, and NVIDIA drivers patch and fixes. Mishka Grey 25 Jun 2020 • 4 min read
Google Hackers Exploit Google Analytics to Steal Credit Card Details; Bypassing CSP; Magecart Attack Cyber criminals are using Google Analytics application and servers to steal credit card data and information through infected E-commerce stores. Mishka Grey 24 Jun 2020 • 4 min read
vulnerability Zero-Day Ripple20 Vulnerability Puts Millions of IoT Devices at Risk A total of 19 Ripple20 vulnerabilities disclosed that are exploiting the TCP/IP library in many IoT devices, affecting enterprise level equipment across industries like data centers and others. Mishka Grey 17 Jun 2020 • 5 min read
vulnerability Latest SGAxe & CrossTalk Attacks Leak Sensitive Data and Expose New Intel SGX Vulnerability New Intel SGX vulnerability - SGAxe and CrossTalk Attacks are extracting sensitive data from the CPU core. Learn how these exploits work and how to fix them. Mishka Grey 12 Jun 2020 • 4 min read
vulnerability SMBleed with SMBGhost: Latest Windows SMB Protocol Vulnerability SMBleedingGhost A new found SMB protocol vulnerability, SMBleed, when combined with SMBGhost vulnerability allows attackers to gain RCE control over the SMB server or client. Learn how SMBleedingGhost works. Mishka Grey 10 Jun 2020 • 3 min read
vulnerability ‘VMware’ Cloud Director Vulnerability Allows 100% Takeover of Corporate Server Infrastructures Latest vCloud Director vulnerability provides RCE (remote code execution) privilege to hackers. Learn how this was made possible and if we have a vCloud Director fix yet. Mishka Grey 5 Jun 2020 • 3 min read
vulnerability Latest Zoom Security Issues: 2 Critical Zoom Vulnerabilities Allows Hackers to Access your PC via a Message Latest Zoom Vulnerability 2020 June introduces 2 critical flaws that allow hackers remote code execution (RCE) through the Zoom chat feature. Learn how it works without any user interaction and what is this Zoom Vulnerability fix. Mishka Grey 4 Jun 2020 • 3 min read
vulnerability High Severity PageLayer Plugin Vulnerability Exposes 200K WordPress Sites to Wipe Attacks 2 Latest WordPress PageLayer Vulnerabilities allow hackers to wipe entire content from your website. Learn how they are doing it and how to fix PageLayer vulnerability. Mishka Grey 29 May 2020 • 3 min read
vulnerability StrandHogg 2.0: Critical Android Bug Affects 1 Billion Smartphones; Allows App Hijacking StrandHogg 2.0 malware exploits Android phones by allowing a malicious app to hide behind a legitimate app to trick the user. Thus, enabling threat actors to steal sensitive user information. Let’s learn more about the StrandHogg vulnerability. Mishka Grey 27 May 2020 • 3 min read
vulnerability Unc0ver 5.0.1 Released: Latest iPhone Jailbreak Software Unlocks All Recent Versions [iOS Zero-Day Vulnerability] One of the best iPhone Jailbreak tools – Unc0ver has just released its latest and most effective version 5.0.0. It works on all latest versions including iOS 11 to the current iOS 13.5, because of a zero-day vulnerability. Learn how you can jailbreak using Unc0ver software. Mishka Grey 26 May 2020 • 3 min read
vulnerability NXNSAttack: Latest DNS Vulnerability Allows Amplified DDoS Attacks Isreali Researchers have discovered a new DNS vulnerability ‘NXNSAttack’ that can be exploited for DDoS attacks amplified upto 1620x. Learn what is NXNS Attack and how you can fix it. Mishka Grey 21 May 2020 • 4 min read
vulnerability Reverse RDP Attack: Flawed Microsoft Patch Leaves 3rd Party RDP Clients Exposed The second Reverse RDP patch released by Microsoft in February, 2020 has still left out other RDP clients vulnerable to cyberattacks. If you use a 3rd Party RDP Client, learn how you can secure against Remote Desktop Protocol Vulnerability. Mishka Grey 18 May 2020 • 4 min read
vulnerability Firebase Misconfiguration Exposes 24000+ Android Apps’ Sensitive User Data Alert for all Android phone users & App developers: Researchers have discovered the latest data breach possibility via Google Firebase, that is allowing major data leaks like user passwords, contact details and more. Learn how to fix misconfigured Firebase. Mishka Grey 14 May 2020 • 4 min read
vulnerability 7 Thunderbolt Vulnerabilities Affect Millions of Devices: 'Thunderspy' Allows Physical Hacking in 5 Minutes Do you own a Thunderbolt equipped laptop, and have bought it after 2011? Well, we’ve news for YOU. 7 newly discovered Intel Thunderbolt vulnerabilities have exposed your device to hackers. Learn what to do? Mishka Grey 13 May 2020 • 6 min read
WordPress Critical Ninja Forms Vulnerability Exposes 1+ Million WordPress Sites | CSRF – XSS Attack A new-found, high-severity Ninja Forms Wordpress Exploit, gives hackers admin access to your wordpress website. This flaw originates from a Ninja Forms’ CSRF vulnerability. Read on to learn the details and fix of this WordPress plugin, Ninja Forms bug. Mishka Grey 8 May 2020 • 3 min read
vulnerability Critical SaltStack Vulnerability Gives Hackers Root Access to Cloud Servers & Data Centers Salt’s users are under huge threat because of 2 recently-found high-severity RCE (remote code execution) vulnerabilities. Big Names like LineageOS, Ghost, DataCert have also been affected by the exploit. Mishka Grey 5 May 2020 • 3 min read
WordPress Critical Bug in E-Learning LMS WordPress Plugins, Allowing Students to Cheat A recent study has drawn attention to some critical bugs that will affect major e-learning platforms. CheckPoint, a cybersecurity firm has discovered severe vulnerabilities in 3 Wordpress LMS Plugins, namely LearnPress, LearnDash, LifterLMS Mishka Grey 1 May 2020 • 3 min read