Archive for the ‘remote code execution’ Category

Adobe Releases Critical Patches for Flash, Acrobat Reader, and Media Encoder

May 14th, 2019
Adobe today released its monthly software updates to patch a total of 87 security vulnerabilities in its Adobe Acrobat and Reader, Flash Player and Media Encoder, most of which could lead to arbitrary code execution attacks or worse. None of the flaws patched this month in Adobe products has been found exploited in the wild. Out of 87 total flaws, a whopping number of vulnerabilities (i.e.,

Posted in Acrobat, Adobe Acrobat, adobe patch, Adobe Reader, adobe software update, download software update, patch tuesday, remote code execution, Vulnerability | Comments (0)

Flaw Affecting Millions of Cisco Devices Let Attackers Implant Persistent Backdoor

May 14th, 2019
Researchers have discovered a severe vulnerability in Cisco products that could allow attackers to implant persistent backdoor on wide range devices used in enterprises and government networks, including routers, switches, and firewalls. Dubbed Thrangrycat or 😾😾😾, the vulnerability, discovered by researchers from the security firm Red Balloon and identified as CVE-2019-1649, affects

Posted in bootkit, Cisco Device, cisco firewall, Cisco Router, cisco switch, hacking firewall, hacking news, hacking router, malware, remote code execution, secure boot | Comments (0)

Pre-Installed Software Flaw Exposes Most Dell Computers to Remote Hacking

May 2nd, 2019
If you use a Dell computer, then beware — hackers could compromise your system remotely. Bill Demirkapi, a 17-year-old independent security researcher, has discovered a critical remote code execution vulnerability in the Dell SupportAssist utility that comes pre-installed on most Dell computers. Dell SupportAssist, formerly known as Dell System Detect, checks the health of your computer

Posted in Computer hacking, cyber security, dell, dell computers, dell laptop, Dell Support, Dell SupportAssist, Dell System Detect, hacking news, remote code execution, Vulnerability | Comments (0)

‘Highly Critical’ Unpatched Zero-Day Flaw Discovered In Oracle WebLogic

April 25th, 2019
A team of cybersecurity researchers today published a post warning enterprises of an unpatched, highly critical zero-day vulnerability in Oracle WebLogic server application that some attackers might have already started exploiting in the wild. Oracle WebLogic is a scalable, Java-based multi-tier enterprise application server that allows businesses to quickly deploy new products and services

Posted in cyber security, oracle, Oracle WebLogic Server, remote code execution, Vulnerability, Zero-Day Vulnerability | Comments (0)

Hackers Actively Exploiting Widely-Used Social Share Plugin for WordPress

April 23rd, 2019
Hackers have been found exploiting a pair of critical security vulnerabilities in one of the popular social media sharing plugins to take control over WordPress websites that are still running a vulnerable version of the plugin. The vulnerable plugin in question is Social Warfare which is a popular and widely deployed WordPress plugin with more than 900,000 downloads. It is used to add social

Posted in cyber security, hack wordpress, hacking news, php security, remote code execution, website security, WordPress, Wordpress hacking, Wordpress Security | Comments (0)

Drupal Releases Core CMS Updates to Patch Several Vulnerabilities

April 17th, 2019
Drupal, the popular open-source content management system, has released security updates to address multiple "moderately critical" vulnerabilities in Drupal Core that could allow remote attackers to compromise the security of hundreds of thousands of websites. According to the advisories published today by the Drupal developers, all security vulnerabilities Drupal patched this month reside in

Posted in Cross site scripting, cybersecurity, Drupal, Drupal hacking, hacking news, JQuery, php security, remote code execution, Vulnerability, website security | Comments (0)

Zero-Day Flaws in Counter-Strike 1.6 Let Malicious Servers Hack Gamers’ PCs

March 14th, 2019
If you are a Counter-Strike gamer, then beware, because 39% of all existing Counter-Strike 1.6 game servers available online are malicious that have been set-up to remotely hack gamers' computers. A team of cybersecurity researchers at Dr. Web has disclosed that an attacker has been using malicious gaming servers to silently compromise computers of Counter-Strike gamers worldwide by

Posted in Counter Strike Game, Counter-Strike, game hack, game hacking, Gaming server, hack gaming server, hacking news, remote code execution | Comments (0)

Adobe Releases Patches for Critical Flaws in Photoshop CC and Digital Edition

March 12th, 2019
Adobe users would feel lighter this month, as Adobe has released patches for just two security vulnerability in its March Security Update. The company today released its monthly security updates to address two critical arbitrary code execution vulnerabilities—one in Adobe Photoshop CC and another in Adobe Digital Editions. Upon successful exploitation, both critical vulnerabilities could

Posted in adobe software update, cyber security, hacking news, patch update, remote code execution, Security patch Update | Comments (0)

Hackers Actively Exploiting Latest Drupal RCE Flaw Published Last Week

February 26th, 2019
Cybercriminals have actively started exploiting an already patched security vulnerability in the wild to install cryptocurrency miners on vulnerable Drupal websites that have not yet applied patches and are still vulnerable. Last week, developers of the popular open-source content management system Drupal patched a critical remote code execution (RCE) vulnerability (CVE-2019-6340) in Drupal

Posted in cryptocurrency, cyber security, Drupal, Drupal exploit, drupal hacked, Drupal hacking, hacking news, remote code execution, website security | Comments (0)

Another Critical Flaw in Drupal Discovered — Update Your Site ASAP!

February 21st, 2019
Developers of Drupal—a popular open-source content management system software that powers millions of websites—have released the latest version of their software to patch a critical vulnerability that could allow remote attackers to hack your site. The update came two days after the Drupal security team released an advance security notification of the upcoming patches, giving websites

Posted in Drupal, Drupal exploit, drupal hacked, Drupal hacking, Hacking Drupal website, hacking news, remote code execution, Vulnerability | Comments (0)