Critical Instagram Bug Could Allow Changing Reel Thumbnails
A security researcher has recently disclosed the details of a critical security bug in Instagram…
Critical Instagram Bug Could Allow Changing Reel Thumbnails on Latest Hacking News.
Vulnerabilities
Researchers: Oracle Took 6 Months to Patch ‘Mega’ Vulnerability Affecting Many Systems
Security researchers have published technical details on a critical Fusion Middleware vulnerability that Oracle took six months to patch.
read more
CrowdStrike: Ransomware Actor Caught Exploiting Mitel VOIP Zero-Day
Security researchers at CrowdStrike have stumbled upon ransomware actors deploying zero-day exploits against Mitel VOIP appliances sitting on the network perimeter.
read more
Codesys Patches 11 Flaws Likely Affecting Controllers From Several ICS Vendors
Codesys this week announced patches for nearly a dozen vulnerabilities discovered in the company’s products by researchers at Chinese cybersecurity firm NSFocus.
read more
US Agencies Warn Organizations of Log4Shell Attacks Against VMware Products
The United States Cybersecurity and Infrastructure Security Agency (CISA) and the Coast Guard Cyber Command (CGCYBER) have issued a joint advisory to warn organizations that threat actors continue to exploit the Log4Shell vulnerability in VMware Horizo…
Critical Vulnerability In Apple Game Center Could Allow Authentication Bypass
Researchers discovered a critical vulnerability affecting the Apple Game Center that allowed authentication bypass. The…
Critical Vulnerability In Apple Game Center Could Allow Authentication Bypass on Latest Hacking News.
Top Cryptographers Flag ‘Devastating’ Flaws in MEGA Cloud Storage
Cryptographers at Swiss university ETH Zurich have found at least five exploitable security flaws in the privacy-themed MEGA cloud storage service and warned that the issues could lead to “devastating attacks on the confidentiality and integrity of use…
Affected ICS Vendors Start Responding to OT:Icefall Vulnerabilities
Some of the industrial control system (ICS) vendors impacted by the OT:Icefall vulnerabilities have released advisories to inform customers about the impact of the flaws and to provide mitigations.
read more
Fancy Bear Uses Nuke Threat Lure to Exploit 1-Click Bug
The APT is pairing a known Microsoft flaw with a malicious document to load malware that nabs credentials from Chrome, Firefox and Edge browsers.
SMA Technologies Patches Critical Security Issue in Workload Automation Solution
A critical vulnerability in the SMA Technologies OpCon UNIX agent results in the same SSH key being deployed with all installations.
Aimed at financial institutions and insurance firms, OpCon is a cross-platform process automation and orchestration sol…