Anti-Spam WordPress Plugin Could Expose Website User Data
‘Spam protection, AntiSpam, FireWall by CleanTalk’ is installed on more than 100,000 sites — and could…
Vulnerabilities
Raft of Exim Security Holes Allow Linux Mail Server Takeovers
Remote code execution, privilege escalation to root and lateral movement through a victim’s environment are all…
Pulse Secure VPNs Get a Fix for Critical Zero-Day Bugs
The security flaw tracked as CVE-2021-22893 is being used by at least two APTs likely linked…
Apple Fixes Zero‑Day Security Bugs Under Active Attack
On Monday, Apple released a quartet of unscheduled updates for iOS, macOS, and watchOS, slapping security…
Hundreds of Millions of Dell Users at Risk from Kernel-Privilege Bugs
The privilege-escalation bug remained hidden for 12 years and has been present in all Dell PCs,…
New Attacks Slaughter All Spectre Defenses
The 3+ years computer scientists spent concocting ways to defend against these supply-chain attacks against chip…
Hewlett Packard Enterprise Plugs Critical Bug in Edge Platform Tool
Researchers warned that unpatched versions of HPE’s Edgeline Infrastructure Manager are open to remote authentication-bypass attacks.…
Microsoft Warns of 25 Critical Vulnerabilities in IoT, Industrial Devices
Azure Defender security team discovers that memory allocation is a systemic problem that can allow threat…
F5 Big-IP Vulnerable to Security-Bypass Bug
The KDC-spoofing flaw tracked as CVE-2021-23008 can be used to bypass Kerberos security and sign into…
Multi-Gov Task Force Plans to Take Down the Ransomware Economy
A coalition of 60 global entities (including the DoJ) has proposed a sweeping plan to hunt…