Archive for the ‘Vulnerability’ Category
Zombieload is back.
This time a new variant (v2) of the data-leaking side-channel vulnerability also affects the most recent Intel CPUs, including the latest Cascade Lake, which are otherwise resistant against attacks like Meltdown, Foreshadow and other MDS variants (RIDL and Fallout).
Initially discovered in May this year, ZombieLoad is one of the three novel types of microarchitectural data
Posted in cyber security, hacking news, intel chipset, intel processor, intel vulnerability, MDS attacks, side channel vulnerability, Skylake Processor, speculative execution, Vulnerability, Zombieload Attack | Comments (0)
Security researchers at Bitdefender have discovered a high-severity security vulnerability in Amazon's Ring Video Doorbell Pro devices that could allow nearby attackers to steal your WiFi password and launch a variety of cyberattacks using MitM against other devices connected to the same network.
In case you don't own one of these, Amazon's Ring Video Doorbell is a smart wireless home
Posted in hack wifi password, hacking IoT devices, hacking news, How To Hack WIFI Password, iot devices, Ring Video Doorbell, secure smart devices, Smart Doorbell, smart home technology, Vulnerability | Comments (0)
If you're running any PHP based website on NGINX server and have PHP-FPM feature enabled for better performance, then beware of a newly disclosed vulnerability that could allow unauthorized attackers to hack your website server remotely.
The vulnerability, tracked as CVE-2019-11043, affects websites with certain configurations of PHP-FPM that is reportedly not uncommon in the wild and could
Posted in hacking web server, hosting web server, Nginx, php 7, php security, PHP Vulnerability, PHP-FPM, Vulnerability, website security | Comments (0)
Following a series of security mishaps and data abuse through its social media platform, Facebook today expanding its bug bounty program in a very unique way to beef up the security of third-party apps and websites that integrate with its platform.
Last year, Facebook launched "Data Abuse Bounty" program to reward anyone who reports valid events of 3rd-party apps collecting Facebook users'
Posted in Bug Bounty Program, Facebook, Facebook Apps, Facebook bug bounty, facebook data scandal, facebook security, hack facebook account, Vulnerability, Vulnerability Disclosure | Comments (0)
No, it's not a patch Tuesday.
It's the third Tuesday of the month, and as The Hacker News shared an early heads-up late last week on Twitter, Adobe today finally released pre-announced out-of-band security updates to patch a total of 82 security vulnerabilities across its various products.
The affected products that received security patches today include:
Adobe Acrobat and Reader
Posted in adobe, Adobe Acrobat, adobe software update, cyber security, download software update, patch download, patch tuesday, remote code execution, Software vulnerabilities, Vulnerability | Comments (0)
Until now, I'm sure you all might have heard of the SimJacker vulnerability disclosed exactly a month ago that affects a wide range of SIM cards and can remotely be exploited to hack into any mobile phone just by sending a specially crafted binary SMS.
If you are unaware, the name "SimJacker" has been given to a class of vulnerabilities that resides due to a lack of authentication and
Posted in cyber security, hacking sim cards, mobile phone hacking, Sim hacking, SimJacker, smartphone hacking, track mobile, track phone number, Vulnerability | Comments (0)
Microsoft today rolling out its October 2019 Patch Tuesday security updates to fix a total of 59 vulnerabilities in Windows operating systems and related software, 9 of which are rated as critical, 49 are important, and one is moderate in severity.
What’s good about this month’s patch update is that after a very long time, none of the security vulnerabilities patched by the tech giant this
Posted in download software update, microsoft, Microsoft Patch Tuesday, Microsoft update, patch tuesday, software update, Vulnerability, windows update download | Comments (0)
After releasing a patch for a critical zero-day remote code execution vulnerability late last month, vBulletin has recently published a new security patch update that addresses 3 more high-severity vulnerabilities in its forum software.
If left unpatched, the reported security vulnerabilities, which affect vBulletin 5.5.4 and prior versions, could eventually allow remote attackers to take
Posted in cyber security, forum software, hacking forum, hacking news, remote code execution, SQL injection attack, vbulletin, vBulletin Forum, Vulnerability | Comments (0)
Almost every application contains security vulnerabilities, some of which you may find today, but others would remain invisible until someone else finds and exploits them—which is the harsh reality of cybersecurity and its current state.
And when we say this, Signal Private Messenger—promoted as one of the most secure messengers in the world—isn't any exception.
Google Project Zero
Posted in Android Vulnerability, call hacking, hacking news, private chat, Secure Messenger, signal messaging app, Vulnerability | Comments (0)
Another day, another revelation of a critical unpatched zero-day vulnerability, this time in the world's most widely used mobile operating system, Android.
What's more? The Android zero-day vulnerability has also been found to be exploited in the wild by the Israeli surveillance vendor NSO Group—infamous for selling zero-day exploits to governments—or one of its customers, to gain control of
Posted in Android, Android Vulnerability, Cyber Attack, hacking android phone, hacking news, how to hack android, Vulnerability, Zero-Day Vulnerability | Comments (0)