Cyber Security, BootHole put Windows and Linux devices at risk
Eclypsium: It’s a vulnerability in the GRUB2 bootloader, that hit devices using Secure Boot. Attackers can install persistent and stealthy bootkits or malware.
Cyber security, huge vulnerability discovered in F5 BIG-IP technologies
Yoroi-Cybaze experts: The flaw, the CVE-2020-5902, is caused by gaps in the management of particular HTTP requests by the TMUI management interface.
Cyber Security, zero-day vulnerability in Cisco RV042 and RV042G routers
CyCognito experts: A Cross-Site Scripting (XSS) flaw gives cybercrime can take control of a router administrator’s web configuration utility. The issue has been fixed with a patch.
Cyber Security, 0-day vulnerability discovered on SOHO Netgear devices
Yoroi-Cybaze Experts: An attacker can execute arbitrary code on the target device by taking control of it without authentication. In addition, there is currently no patch.
Cyber Security, vulnerability in Cisco’s Unified CCX
Brenden Meeder of Booz Allen Hamilton discovered the flaw that could led a remote attacker without credentials to install malware on the targeted device. Install the patch now!
Cyber Security, Oracle: Update WebLogic Server ASAP!
Cybercrime is still exploiting the Remote Code Execution (RCE) CVE-2020-2883 vulnerability, patched un April, to launch waves of cyber attacks.
Cybercrime hit Windows 10 users thanks to a critical flaw
Microsoft confirmed “limited targeted attacks that could leverage un-patched vulnerabilities in the Adobe Type Manager Library”. The cyber security experts: Today there’s not available fix.
Cyber Security, WordPress adds auto-update for themes and plugins
Vulnerabilities in old versions are cause of great concern, thanks to the tons of attacks that exploit them to hack the sites. The new feature should be out with the CMS upcoming 5.5 release.
Cyber Security, Microsoft patches the Windows 10 “SMBGhost”
The CVE-2020-0796 affected the Server Message Block 3.1.1 (SMBv3). It could enable remote and arbitrary code execution, potentially taking control of the system. Moreover, it was wormable.
Cyber Security: Windows 10 has a critical vulnerability, not yet patched
Microsoft confirmed. It has been dubbed “SMBGhost” and affects the Server Message Block (SMB) network communications protocol. It’s wormable and there are no mitigating factors.