Critical RCE Flaw in Palo Alto Gateways Hits Uber

Critical RCE Flaw in Palo Alto Gateways Hits Uber

A remote code execution (RCE) vulnerability has been uncovered in the GlobalProtect portal and GlobalProtect Gateway interface security products from Palo Alto Networks. It’s an…

View More Critical RCE Flaw in Palo Alto Gateways Hits Uber
Critical flaws in embedded TCP/IP library impact millions of IoT devices across industries

Critical flaws in embedded TCP/IP library impact millions of IoT devices across industries

Millions of devices, from consumer products like printers and IP cameras to specialized devices used across organizations such as video conferencing systems and industrial control…

View More Critical flaws in embedded TCP/IP library impact millions of IoT devices across industries
Update your Firefox browser now, there’s an emergency patch you’ll want

Update your Firefox browser now, there’s an emergency patch you’ll want

Are you running Firefox version 67.0.3 or Firefox ESR 60.7.1? If the answer is “no,” or you’re not sure, maybe just update your web browser…

View More Update your Firefox browser now, there’s an emergency patch you’ll want
Disgruntled security firm discloses zero-days in Facebook's WordPress plugins

Disgruntled security firm discloses zero-days in Facebook’s WordPress plugins

A US-based cyber-security firm has published details about two zero-days that impact two of Facebook’s official WordPress plugins. The details also include proof-of-concept (PoC) code…

View More Disgruntled security firm discloses zero-days in Facebook’s WordPress plugins
Attackers Exploit 0-Day Code Execution Flaw In The Sophos Firewall

Attackers Exploit 0-Day Code Execution Flaw In The Sophos Firewall

Users of a widely used firewall from Sophos have been under a zero-day attack that was designed to steal usernames, cryptographically protected passwords, and other…

View More Attackers Exploit 0-Day Code Execution Flaw In The Sophos Firewall
Mysterious Hacker Group Eavesdrops On Corporate Email And FTP Traffic

Mysterious Hacker Group Eavesdrops On Corporate Email And FTP Traffic

Since at least early December 2019, a mysterious hacker group has been taking over DrayTek enterprise routers to eavesdrop on FTP and email traffic inside…

View More Mysterious Hacker Group Eavesdrops On Corporate Email And FTP Traffic
Microsoft warns about Internet Explorer zero-day, but no patch yet

Microsoft warns about Internet Explorer zero-day, but no patch yet

Microsoft has published a security advisory today about an Internet Explorer (IE) vulnerability that is currently being exploited in the wild — a so-called zero-day.…

View More Microsoft warns about Internet Explorer zero-day, but no patch yet
Chrome, Edge, Safari hacked at elite Chinese hacking contest

Chrome, Edge, Safari hacked at elite Chinese hacking contest

China’s top hackers have gathered this weekend in the city of Chengdu to compete in the Tianfu Cup, the country’s top hacking competition. Over the…

View More Chrome, Edge, Safari hacked at elite Chinese hacking contest
Facebook Sues NSO Group Over WhatsApp Zero Day

Facebook Sues NSO Group Over WhatsApp Zero Day

Facebook filed a lawsuit today in a US court against NSO Group, an Israeli company that sells spyware products. The social media giant claims that…

View More Facebook Sues NSO Group Over WhatsApp Zero Day
What is a zero-day vulnerability

What is a zero-day vulnerability?

Chances are pretty good you’ve heard the term zero-day vulnerability. The term conjures up images of post-apocalyptic landscapes, where technology has either hit a singularity-level…

View More What is a zero-day vulnerability?