General Security News
-
Lỗi chipset nghiêm trọng khiến cho hàng triệu thiết bị Android trở thành mục tiêu của theo dõi từ xa
Ba lỗ hổng bảo mật đã được phát hiện trong bộ giải mã âm thanh của chip Qualcomm và MediaTek. Nếu không được giải quyết, lỗ hổng này có thể...
-
The U.S. is offering up to $10 million for Identity to Locate Sandworm Hacking Group
In an attempt to identify and track down six Russian GRU hackers who are members of the notorious Sandworm hacking group, the U.S. government is...
-
New RIG Exploit Kit Campaign Infecting Victims' PCs with RedLine Stealer
A new campaign leveraging an exploit kit has been observed abusing an Internet Explorer flaw patched by Microsoft last year to deliver the RedLine...
-
CloudFlare Thwarts Record DDoS Attack Peaking at 15 Million Requests Per Second
Cloudflare on Wednesday disclosed that it acted to mitigate a 15.3 million request-per-second (RPS) distributed denial-of-service (DDoS) attack....
-
U.S Cybersecurity Agency Lists 2021's Top 15 Most Exploited Software Vulnerabilities
Log4Shell, ProxyShell, ProxyLogon, ZeroLogon, and flaws in Zoho ManageEngine AD SelfService Plus, Atlassian Confluence, and VMware vSphere Client...
-
Critical RCE Vulnerability in Google’s VirusTotal Platform Let Attackers Scans Capabilities
There is a security vulnerability in the VirusTotal platform that has been discovered by researchers, and it has the potential to be exploited...
-
U.S. Offers $10 Million Bounty for Information on 6 Russian Military Hackers
The U.S. government on Tuesday announced up to $10 million in rewards for information on six hackers associated with the Russian military...
-
NPM Bug Allowed Attackers to Distribute Malware as Legitimate Packages
A "logical flaw" has been disclosed in NPM, the default package manager for the Node.js JavaScript runtime environment, that enables malicious...
-
Microsoft Discovers New Privilege Escalation Flaws in Linux Operating System
Microsoft on Tuesday disclosed a set of two privilege escalation vulnerabilities in the Linux operating system that could potentially allow threat...
-
Critical Jira Vulnerability Let an Unauthenticated Attacker to Bypass Authentication
In an advisory published by Atlassian, the company warns that critical vulnerabilities in Seraph affect its Jira and Jira Service Management...
-
Hackers Sending Poisoned Resumes to steal Credentials and Bank Details
More_eggs is malware that is specially designed to steal valuable credentials like usernames and passwords for corporate bank accounts, email...
-
Critical Android Bug Let Attackers to Access Users’ Media and Audio Conversations
The audio decoders in Qualcomm and MediaTek chips have been reported to contain three security vulnerabilities. Leaving unpatched three of...