Category: alerts

The security vulnerability can be exploited with a malicious CSV file. Read more

Original release date: September 13, 2021   High Vulnerabilities Primary Vendor — Product Description Published CVSS Score Source & Patch Info adaptivescale — lxdui A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system. 2021-09-03 10 CVE-2021-40494 MISC arubanetworks — arubaos A remote… Read more

Original release date: September 13, 2021 CISA will host its fourth annual National Cybersecurity Summit on Wednesdays during the month of October. The 2021 Summit will be held as a series of four virtual events bringing stakeholders together in a forum for meaningful conversation: Oct. 6 – Assembly Required: The Pieces of the Vulnerability Management… Read more

Record-breaking distributed denial of service attack targets Russia’s version of Google – Yandex. Read more

John Hammond, security researcher with Huntress, discusses how financially motivated cybercrooks use and abuse cryptocurrency. Read more

They were posted for free by former Babuk gang members who’ve bickered, squabbled and huffed off to start their own darn ransomware businesses, dagnabbit. Read more

A chain of exploits could allow a malicious Azure user to infiltrate other customers’ cloud instances within Microsoft’s container-as-a-service offering. Read more

Grayfly campaigns have launched the novel malware against businesses in Taiwan, Vietnam, the US and Mexico and are targeting Exchange and MySQL servers.  Read more

An authentication bypass vulnerability leading to remote code execution offers up the keys to the corporate kingdom. Read more

Australian immunization app bug lets attackers fake vaccine status. Read more