Our news

Original release date: February 8, 2021   High Vulnerabilities Primary Vendor — Product Description Published CVSS Score Source & Patch Info accel-ppp — accel-ppp Variable underflow exists in accel-ppp radius/packet.c when receiving a RADIUS vendor-specific attribute with length field is less than 2. It has an impact only when the attacker controls the RADIUS server,…

READ MORE →

Claroty reports that adversaries, CISOs and researchers have all turned their attention to finding critical security bugs in ICS networks.

READ MORE →

An CRSF-to-stored-XSS security bug plagues 50,000 ‘Contact Form 7’ Style users.

READ MORE →

Google warns of a zero-day vulnerability in the V8 open-source engine that’s being actively exploited by attackers.

READ MORE →

Original release date: February 4, 2021 Cisco has released security updates to address vulnerabilities in Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Cisco Advisories and apply the necessary updates. For updates addressing lower severity vulnerabilities, see…

READ MORE →

The vulnerabilities exist in Cisco’s RV160, RV160W, RV260, RV260P, and RV260W VPN routers for small businesses.

READ MORE →

A second APT, potentially linked to the Chinese government, could be behind the Supernova malware.

READ MORE →

Researchers warn that the Hildegard malware is part of ‘one of the most complicated attacks targeting Kubernetes.’

READ MORE →

The by-now infamous company has issued patches for three security vulnerabilities in total.

READ MORE →

The sophisticated backdoor steals SSH credentials for servers in academic and scientific high-performance computing clusters.

READ MORE →