Vulnerabilities

New ‘Inception’ Side-Channel Attack Targets AMD Processors

New ‘Inception’ Side-Channel Attack Targets AMD Processors 09/08/2023 at 12:17 By Eduard Kovacs Researchers have disclosed the details of a new side-channel attack targeting AMD CPUs named Inception. The post New ‘Inception’ Side-Channel Attack Targets AMD Processors appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

New ‘Inception’ Side-Channel Attack Targets AMD Processors Read More »

Downfall: New Intel CPU Attack Exposing Sensitive Information

Downfall: New Intel CPU Attack Exposing Sensitive Information 09/08/2023 at 09:32 By Eduard Kovacs Google researcher discloses the details of an Intel CPU attack method named Downfall that may be remotely exploitable. The post Downfall: New Intel CPU Attack Exposing Sensitive Information appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

Downfall: New Intel CPU Attack Exposing Sensitive Information Read More »

Patch Tuesday: Microsoft (Finally) Patches Exploited Office Zero-Days

Patch Tuesday: Microsoft (Finally) Patches Exploited Office Zero-Days 08/08/2023 at 23:17 By Ryan Naraine Patch Tuesday: A month after confirming active exploitation of Office code execution flaws, Microsoft has shipped patches for multiple affected products. The post Patch Tuesday: Microsoft (Finally) Patches Exploited Office Zero-Days appeared first on SecurityWeek. This article is an excerpt from

Patch Tuesday: Microsoft (Finally) Patches Exploited Office Zero-Days Read More »

Patch Tuesday: Adobe Patches 30 Acrobat, Reader Vulns

Patch Tuesday: Adobe Patches 30 Acrobat, Reader Vulns 08/08/2023 at 21:19 By Ryan Naraine Adobe rolls out a big batch of security updates to fix at least 30 Acrobat and Reader vulnerabilities affecting Windows and macOS users. The post Patch Tuesday: Adobe Patches 30 Acrobat, Reader Vulns appeared first on SecurityWeek. This article is an

Patch Tuesday: Adobe Patches 30 Acrobat, Reader Vulns Read More »

New PaperCut Vulnerability Allows Remote Code Execution

New PaperCut Vulnerability Allows Remote Code Execution 07/08/2023 at 18:02 By Eduard Kovacs A new vulnerability in the PaperCut MF/NG print management software can be exploited for unauthenticated, remote code execution. The post New PaperCut Vulnerability Allows Remote Code Execution appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

New PaperCut Vulnerability Allows Remote Code Execution Read More »

In Other News: Cybersecurity Funding Rebounds, Cloud Threats, BeyondTrust Vulnerability

In Other News: Cybersecurity Funding Rebounds, Cloud Threats, BeyondTrust Vulnerability 04/08/2023 at 17:48 By SecurityWeek News Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of July 31, 2023. The post In Other News: Cybersecurity Funding Rebounds, Cloud Threats, BeyondTrust Vulnerability appeared first

In Other News: Cybersecurity Funding Rebounds, Cloud Threats, BeyondTrust Vulnerability Read More »

Points.com Vulnerabilities Allowed Customer Data Theft, Rewards Program Hacking

Points.com Vulnerabilities Allowed Customer Data Theft, Rewards Program Hacking 04/08/2023 at 15:17 By Ionut Arghire Multiple vulnerabilities in the airline and hotel rewards platform points.com could have led to personal information theft and unauthorized administrative access. The post Points.com Vulnerabilities Allowed Customer Data Theft, Rewards Program Hacking appeared first on SecurityWeek. This article is an

Points.com Vulnerabilities Allowed Customer Data Theft, Rewards Program Hacking Read More »

Exploitation of Ivanti EPMM Flaw Picking Up as New Vulnerability Is Disclosed

Exploitation of Ivanti EPMM Flaw Picking Up as New Vulnerability Is Disclosed 04/08/2023 at 13:31 By Eduard Kovacs Exploitation of the Ivanti EPMM flaw CVE-2023-35078 is picking up as a new critical vulnerability tracked as CVE-2023-35082 is disclosed. The post Exploitation of Ivanti EPMM Flaw Picking Up as New Vulnerability Is Disclosed appeared first on

Exploitation of Ivanti EPMM Flaw Picking Up as New Vulnerability Is Disclosed Read More »

Five Eyes Agencies Call Attention to Most Frequently Exploited Vulnerabilities

Five Eyes Agencies Call Attention to Most Frequently Exploited Vulnerabilities 04/08/2023 at 12:31 By Ionut Arghire Five Eyes government agencies have published a list of the software vulnerabilities that were most frequently exploited in malicious attacks in 2022. The post Five Eyes Agencies Call Attention to Most Frequently Exploited Vulnerabilities appeared first on SecurityWeek. This

Five Eyes Agencies Call Attention to Most Frequently Exploited Vulnerabilities Read More »

These Are the Top Five Cloud Security Risks, Qualys Says

These Are the Top Five Cloud Security Risks, Qualys Says 03/08/2023 at 17:47 By Kevin Townsend Cloud security specialist Qualys has provided its view of the top five cloud security risks, drawing insights and data from its own platform and third parties. The post These Are the Top Five Cloud Security Risks, Qualys Says appeared

These Are the Top Five Cloud Security Risks, Qualys Says Read More »

Dozens of RCE Vulnerabilities Impact Milesight Industrial Router

Dozens of RCE Vulnerabilities Impact Milesight Industrial Router 03/08/2023 at 17:47 By Ionut Arghire Cisco Talos researchers warn of dozens of critical- and high-severity vulnerabilities in the Milesight UR32L industrial router leading to code execution. The post Dozens of RCE Vulnerabilities Impact Milesight Industrial Router appeared first on SecurityWeek. This article is an excerpt from

Dozens of RCE Vulnerabilities Impact Milesight Industrial Router Read More »

Google Awards Over $60,000 for V8 Vulnerabilities Patched With Chrome 115 Update

Google Awards Over $60,000 for V8 Vulnerabilities Patched With Chrome 115 Update 03/08/2023 at 12:47 By Ionut Arghire Google has paid out over $60,000 for three high-severity type confusion vulnerabilities in Chrome’s V8 engine. The post Google Awards Over $60,000 for V8 Vulnerabilities Patched With Chrome 115 Update appeared first on SecurityWeek. This article is

Google Awards Over $60,000 for V8 Vulnerabilities Patched With Chrome 115 Update Read More »

Firefox 116 Patches High-Severity Vulnerabilities

Firefox 116 Patches High-Severity Vulnerabilities 02/08/2023 at 15:42 By Ionut Arghire Firefox 116 was released with patches for 14 CVEs, including nine high-severity vulnerabilities, some of which can lead to remote code execution or sandbox escapes. The post Firefox 116 Patches High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

Firefox 116 Patches High-Severity Vulnerabilities Read More »

Hacker Conversations: Youssef Sammouda, Bug Bounty Hunter

Hacker Conversations: Youssef Sammouda, Bug Bounty Hunter 01/08/2023 at 15:49 By Kevin Townsend SecurityWeek speaks to Youssef Sammouda about using cybersecurity research and bug bounties as a way of life and source of income. The post Hacker Conversations: Youssef Sammouda, Bug Bounty Hunter appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

Hacker Conversations: Youssef Sammouda, Bug Bounty Hunter Read More »

Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks

Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks 31/07/2023 at 13:31 By Eduard Kovacs Ivanti EPMM customers have been warned of CVE-2023-35081, a second zero-day vulnerability that has been exploited in targeted attacks. The post Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks appeared first on SecurityWeek. This article is an excerpt from

Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks Read More »

In Other News: Data Breach Cost Rises, Russia Targets Diplomats, Tracker Alerts in Android 

In Other News: Data Breach Cost Rises, Russia Targets Diplomats, Tracker Alerts in Android  28/07/2023 at 19:17 By SecurityWeek News Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of July 24, 2023. The post In Other News: Data Breach Cost Rises, Russia

In Other News: Data Breach Cost Rises, Russia Targets Diplomats, Tracker Alerts in Android  Read More »

US, Australia Issue Warning Over Access Control Vulnerabilities in Web Applications

US, Australia Issue Warning Over Access Control Vulnerabilities in Web Applications 28/07/2023 at 19:17 By Ionut Arghire US and Australian government agencies provide guidance on addressing access control vulnerabilities in web applications. The post US, Australia Issue Warning Over Access Control Vulnerabilities in Web Applications appeared first on SecurityWeek. This article is an excerpt from

US, Australia Issue Warning Over Access Control Vulnerabilities in Web Applications Read More »

Zimbra Patches Exploited Zero-Day Vulnerability

Zimbra Patches Exploited Zero-Day Vulnerability 28/07/2023 at 15:47 By Ionut Arghire Zimbra has released patches for a cross-site scripting (XSS) vulnerability that has been exploited in malicious attacks. The post Zimbra Patches Exploited Zero-Day Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Zimbra Patches Exploited Zero-Day Vulnerability Read More »

Two New Vulnerabilities Could affect 40% of Ubuntu Cloud Workloads

Two New Vulnerabilities Could affect 40% of Ubuntu Cloud Workloads 27/07/2023 at 17:20 By Kevin Townsend Researchers discovered two vulnerabilities in the Ubuntu OverlayFS module: CVE-2023-2640 and CVE-2023-32629 (together dubbed ‘GameOver(lay)’). The post Two New Vulnerabilities Could affect 40% of Ubuntu Cloud Workloads appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

Two New Vulnerabilities Could affect 40% of Ubuntu Cloud Workloads Read More »

Wiz Says 62% of AWS Environments Exposed to Zenbleed Exploitation

Wiz Says 62% of AWS Environments Exposed to Zenbleed Exploitation 27/07/2023 at 04:18 By Ryan Naraine Researchers say a whopping 62 percent of AWS environments may be exposed to the newly documented AMD ‘Zenbleed’ information leak flaw. The post Wiz Says 62% of AWS Environments Exposed to Zenbleed Exploitation appeared first on SecurityWeek. This article

Wiz Says 62% of AWS Environments Exposed to Zenbleed Exploitation Read More »

Scroll to Top