Cisco High Severity Flaw Let Attackers Retrieve RSA Private Key Remotely
Cisco released software updates that address the vulnerability affecting its Adaptive Security Appliance Software (ASA) and Firepower Threat Defense Software (FTD). The high severity flaw is tracked as (CVE-2022-20866) found in the handling of...
Hackers Exploiting High-Severity Zimbra Flaw to Steal Email Account Credentials
Zimbra CVE-2022-27824 has been added to the CISA's "Known Exploited Vulnerabilities" catalog as a new vulnerability. Hackers are actively exploiting it in attack activities, which indicates it is active in the hacking community. Unauthenticated threat...
.png "Apple Released Security Updates For iOS, iPadOS, macOS, tvOS, and watchOS – Update Now!")
Apple Released Security Updates For iOS, iPadOS, macOS, tvOS, and watchOS – Update Now!
The operating systems within Apple devices have begun receiving updates. It is anticipated that Apple Watch, iPad, iPhone, and Mac users will receive the latest updates, which include a few new features and a...
New UEFI Firmware Bugs in Lenovo Notebook Models Let Hackers Perform RCE
Three buffer overflow vulnerabilities have been identified in the UEFI firmware used in a number of laptops made by Lenovo and can be exploited by attackers for the purpose of taking control of windows...
Drone Protocol Flaws Let Attacker Take Full Control Over the Device
ExpressLRS is an open-source Radio Link for Radio Control applications that focuses on range and latency. It is very popular in FPV drone racing and other remote control aircraft. It runs on a wide variety...
Cisco Says zero-day Flaws with end-of-life VPN Routers won’t be Fixed
The Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers have entered the end-of-life process and hence it won’t be fixed. The vulnerability is tracked as (CVE-2022-20825) and has a CVSS severity rating of 9.8....
Microsoft Office 365 Functionality that Allow Attackers to Encrypt Files Stored on SharePoint and...
Cybersecurity analysts at Proofpoint have recently discovered that there might be a way to encrypt files on SharePoint and OneDrive by exploiting a feature in the Microsoft 365 suite. As a result, enterprises could leave...
Sophos Zero-day Flaw Exploited by Chinese Hackers to Implement Backdoor
The Chinese hackers exploited Sophos firewall's zero-day flaw to target South Asian companies and breached cloud-hosted web servers. Previously, Volexity noticed a sophisticated attack against a customer that is seriously targeted by multiple Chinese advanced...
Zimbra Email Flaw Let Attackers Steal Credentials via Memcache Injection
Zimbra, one of the leading email client systems, has been disclosed to have a critical vulnerability. While successful exploitation of this critical vulnerability could allow an attacker to seize the cleartext passwords of users...
Researchers Found that Bluetooth Devices Can Be Used to Track Location of Mobile Phones
Using Bluetooth signals generated by smartphones, security researchers at the University of California San Diego have developed a method of identifying and tracking them via their smartphones. During the team's research, they found that Bluetooth...
