Newsletter
Stay up to date! Get all the latest & greatest posts delivered straight to your inbox
vulnerability

vulnerability
Microsoft Releases Emergency Windows Updates for 2 RCE Bugs
Microsoft urgently released 2 out-of-band software updates for Windows 10 and Windows Server 2019 editions. Find out more about the remote code execution vulnerabilities.

Mishka Grey

2 Jul 2020
•
2 min read

vulnerability
High Severity NVIDIA Vulnerabilities Affect Windows and Linux Drivers
NVIDIA Drivers Vulnerability exploit Window and Linux machines. Upto 12 high severity bugs found. Learn how these can affect you, and NVIDIA drivers patch and fixes.

Mishka Grey

25 Jun 2020
•
4 min read

Google
Hackers Exploit Google Analytics to Steal Credit Card Details; Bypassing CSP; Magecart Attack
Cyber criminals are using Google Analytics application and servers to steal credit card data and information through infected E-commerce stores.

Mishka Grey

24 Jun 2020
•
4 min read

vulnerability
Zero-Day Ripple20 Vulnerability Puts Millions of IoT Devices at Risk
A total of 19 Ripple20 vulnerabilities disclosed that are exploiting the TCP/IP library in many IoT devices, affecting enterprise level equipment across industries like data centers and others.

Mishka Grey

17 Jun 2020
•
5 min read

vulnerability
Latest SGAxe & CrossTalk Attacks Leak Sensitive Data and Expose New Intel SGX Vulnerability
New Intel SGX vulnerability - SGAxe and CrossTalk Attacks are extracting sensitive data from the CPU core. Learn how these exploits work and how to fix them.

Mishka Grey

12 Jun 2020
•
4 min read

vulnerability
SMBleed with SMBGhost: Latest Windows SMB Protocol Vulnerability SMBleedingGhost
A new found SMB protocol vulnerability, SMBleed, when combined with SMBGhost vulnerability allows attackers to gain RCE control over the SMB server or client. Learn how SMBleedingGhost works.

Mishka Grey

10 Jun 2020
•
3 min read

vulnerability
‘VMware’ Cloud Director Vulnerability Allows 100% Takeover of Corporate Server Infrastructures
Latest vCloud Director vulnerability provides RCE (remote code execution) privilege to hackers. Learn how this was made possible and if we have a vCloud Director fix yet.

Mishka Grey

5 Jun 2020
•
3 min read

vulnerability
Latest Zoom Security Issues: 2 Critical Zoom Vulnerabilities Allows Hackers to Access your PC via a Message
Latest Zoom Vulnerability 2020 June introduces 2 critical flaws that allow hackers remote code execution (RCE) through the Zoom chat feature. Learn how it works without any user interaction and what is this Zoom Vulnerability fix.

Mishka Grey

4 Jun 2020
•
3 min read

vulnerability
High Severity PageLayer Plugin Vulnerability Exposes 200K WordPress Sites to Wipe Attacks
2 Latest WordPress PageLayer Vulnerabilities allow hackers to wipe entire content from your website. Learn how they are doing it and how to fix PageLayer vulnerability.

Mishka Grey

29 May 2020
•
3 min read

vulnerability
StrandHogg 2.0: Critical Android Bug Affects 1 Billion Smartphones; Allows App Hijacking
StrandHogg 2.0 malware exploits Android phones by allowing a malicious app to hide behind a legitimate app to trick the user. Thus, enabling threat actors to steal sensitive user information. Let’s learn more about the StrandHogg vulnerability.

Mishka Grey

27 May 2020
•
3 min read

vulnerability
Unc0ver 5.0.1 Released: Latest iPhone Jailbreak Software Unlocks All Recent Versions [iOS Zero-Day Vulnerability]
One of the best iPhone Jailbreak tools – Unc0ver has just released its latest and most effective version 5.0.0. It works on all latest versions including iOS 11 to the current iOS 13.5, because of a zero-day vulnerability. Learn how you can jailbreak using Unc0ver software.

Mishka Grey

26 May 2020
•
3 min read

vulnerability
NXNSAttack: Latest DNS Vulnerability Allows Amplified DDoS Attacks
Isreali Researchers have discovered a new DNS vulnerability ‘NXNSAttack’ that can be exploited for DDoS attacks amplified upto 1620x. Learn what is NXNS Attack and how you can fix it.

Mishka Grey

21 May 2020
•
4 min read

vulnerability
Reverse RDP Attack: Flawed Microsoft Patch Leaves 3rd Party RDP Clients Exposed
The second Reverse RDP patch released by Microsoft in February, 2020 has still left out other RDP clients vulnerable to cyberattacks. If you use a 3rd Party RDP Client, learn how you can secure against Remote Desktop Protocol Vulnerability.

Mishka Grey

18 May 2020
•
4 min read

vulnerability
Firebase Misconfiguration Exposes 24000+ Android Apps’ Sensitive User Data
Alert for all Android phone users & App developers: Researchers have discovered the latest data breach possibility via Google Firebase, that is allowing major data leaks like user passwords, contact details and more. Learn how to fix misconfigured Firebase.

Mishka Grey

14 May 2020
•
4 min read

vulnerability
7 Thunderbolt Vulnerabilities Affect Millions of Devices: 'Thunderspy' Allows Physical Hacking in 5 Minutes
Do you own a Thunderbolt equipped laptop, and have bought it after 2011? Well, we’ve news for YOU. 7 newly discovered Intel Thunderbolt vulnerabilities have exposed your device to hackers. Learn what to do?

Mishka Grey

13 May 2020
•
6 min read

WordPress
Critical Ninja Forms Vulnerability Exposes 1+ Million WordPress Sites | CSRF – XSS Attack
A new-found, high-severity Ninja Forms Wordpress Exploit, gives hackers admin access to your wordpress website. This flaw originates from a Ninja Forms’ CSRF vulnerability. Read on to learn the details and fix of this WordPress plugin, Ninja Forms bug.

Mishka Grey

8 May 2020
•
3 min read

vulnerability
Critical SaltStack Vulnerability Gives Hackers Root Access to Cloud Servers & Data Centers
Salt’s users are under huge threat because of 2 recently-found high-severity RCE (remote code execution) vulnerabilities. Big Names like LineageOS, Ghost, DataCert have also been affected by the exploit.

Mishka Grey

5 May 2020
•
3 min read

WordPress
Critical Bug in E-Learning LMS WordPress Plugins, Allowing Students to Cheat
A recent study has drawn attention to some critical bugs that will affect major e-learning platforms. CheckPoint, a cybersecurity firm has discovered severe vulnerabilities in 3 Wordpress LMS Plugins, namely LearnPress, LearnDash, LifterLMS

Mishka Grey

1 May 2020
•
3 min read
No results found
↑ ↓ Navigate up/down
Enter Go to article
/ Search new term
Esc Close search
GO TOP