Author: DEFENDEDGE

Threat hunters weigh in on how the business of ransomware, the complex relationships between cybercriminals, and how they work together and hawk their wares on the Dark Web. Read more

Researchers found flaws most of the ‘popular’ PDF applications tested. Read more

VMware’s virtualization management platform, vCenter Server, has a critical severity bug the company is urging customers to patch “as soon as possible”. Read more

The security vendor’s network management and threat protection station can open the door to code execution, DoS and potential PC takeovers. Read more

Dale Ludwig, business development manager at Cherry Americas, discusses advances in hardware-based security that can enhance modern cyber-defenses. Read more

One of the workaround XML files automatically deactivates protection from an earlier workaround: a potential path to older vulnerabilities being opened again. Read more

A WordPress reservation plugin has a vulnerability that allows unauthenticated hackers to access reservation data stored by site owners. Read more

Original release date: May 24, 2021   High Vulnerabilities Primary Vendor — Product Description Published CVSS Score Source & Patch Info cars-seller-auto-classifieds-script_project — cars-seller-auto-classifieds-script The request_list_request AJAX call of the Car Seller – Auto Classifieds Script WordPress plugin through 2.1.0, available to both authenticated and unauthenticated users, does not sanitise, validate or escape the order_id… Read more

The plugin, installed on hundreds of thousands of sites, allows anyone to filch database info without having to be logged in. Read more

On Wednesday, Google quietly slipped updates into its May 3 Android security bulletin for bugs that its Project Zero group has confirmed are zero-days. Read more