Vulnerability

Researchers uncovered a new backdoor malware dubbed "Redigo" written in Go -Language, which targets the Redis servers and drops a backdoor to gain complete control of the servers. Redigo Malware was uncovered via vulnerable Redis...

Google released new security updates for actively exploited Chrome zero-day vulnerability that allows attackers to execute an arbitrary code to take full control of the system remotely using the exploit that exists in the...

Multiple critical vulnerabilities were found by the security researchers at Synopsys in three Android apps that enable users to control computer systems with Android devices.  Furthermore, these critical vulnerabilities could be exploited by threat actors...

Security experts from Cyble security firm have recently identified a security flaw, CVE-2022-40684 that's affecting multiple versions of Fortinet products, and this product range includes the following products:- FortiOS FortiProxy FortiSwitchManager A recently patched critical vulnerability in Fortinet...

BMC (Baseboard Management Controller) firmware from Lanner has been found to contain over a dozen vulnerabilities that could allow remote attacks to be launched against OT and IoT networks. As a result of analyzing an...

There have been two high-severity security vulnerabilities recently discovered and patched by the OpenSSL Project in its open-source cryptographic library.  Encryption of communication channels and HTTPS connections is achieved through the use of this cryptographic...

An intrusion was detected by The DFir Report in early June 2022 that leveraged the Follina vulnerability, CVE-2022-30190 to gain initial access. Apart from getting initial access it also initiated the infection chain of...

A high-severity security flaw has been patched recently by GitHub on September 19, 2022, and it's a cloud-based repository hosting service. By exploiting this vulnerability, malicious repositories could have been created and attacks on...

In order to address a potentially exploitable zero-day vulnerability discovered in recent attacks on Google's Chrome desktop web browser, Google has released a security update as an emergency fix. The vulnerability has been tracked as...

In the JavaScript sandbox library vm2, the cybersecurity analysts at Oxeye research team have recently found a severe RCE flaw dubbed, "Sandbreak." Through the NPM package repository, the vm2 sandbox library achieves a total of...