Vulnerabilities

Brazil

Brazil Govt’s Huge Leak: Health Data of 243M

| | brazil, Data leak, SB Blogwatch, Zello
Brazil’s Ministry of Health is under fire again for another massive leak of personal information ...
Security Boulevard

Impressive iPhone Exploit

| | Apple, Exploits, iPhone, patching, Uncategorized, zero-day
This is a scarily impressive vulnerability: Earlier this year, Apple patched one of the most breathtaking iPhone vulnerabilities ever: a memory corruption bug in the iOS kernel that gave attackers remote access ...
Schneier on Security

There’s a RAT in my code: new npm malware with Bladabindi trojan spotted

| | FEATURED, malicious code npm, Nexus Intelligence Insights, npm, Vulnerabilities
Over the Thanksgiving weekend, Sonatype discovered new malware within the npm registry. This time, the typosquatting packages identified by us are laced with a popular Remote Access Trojan (RAT) ...
Sonatype Blog
90% of Companies Faced Increased Cyberattacks During COVID-19

90% of Companies Faced Increased Cyberattacks During COVID-19

| | Application Security, AppSec, Cyber Security, rasp, Uncategorized, Vulnerabilities
A recent global study by Tanium of 1,000 CXOs reported on the effects of COVID-19 on enterprise and government organizations. 90 percent of those surveyed said they experienced an increase in cyberattacks ...
K2io

cPanel & WHM Vulnerability

| | Blog, cPanel & WHM, cPanel & WHM MFA Bypass, Vulnerability Research, Vulnerability Research Team, zero-day, zero-day vulnerabilities
The post cPanel & WHM Vulnerability appeared first on Digital Defense, Inc ...
Digital Defense, Inc.
™

Zero Day: cPanel® & WHM® Vulnerability

| | cPanel and WebHost Manager, Press Release, SBN News, Vulnerability Research, zero-day, Zero-Day Alerts, zero-day vulnerabilities
The post Zero Day: cPanel® & WHM® Vulnerability appeared first on Digital Defense, Inc ...
Digital Defense, Inc.
New Study Says Cyber Security Technology Isn’t as Effective As It Should Be

New Study Says Cyber Security Technology Isn’t as Effective As It Should Be

| | Application Security, AppSec, Cyber Security, rasp, Uncategorized, Vulnerabilities
A new study by Debate Security finds that the efficacy problems in cyber security are more related to economic issues rather than technology issues.  It found that companies when evaluating which cyber ...
K2io
Chinese

Japanese Orgs Hacked ‘by China’ in Long, Widespread Campaign

| | APT10, china, Japan, SB Blogwatch, ZeroLogon
Chinese state-backed threat actors APT10 have been hacking Japanese businesses for at least a year ...
Security Boulevard
Drupal Core: Behind the Vulnerability

Drupal Core: Behind the Vulnerability

| | Blog, Checkmarx Security Research Team, CSRF, Drupal, Drupal security analysis, Reflected XSS, security vulnerability, Technical Blog
Earlier this year, the Checkmarx Security Research Team conducted an investigation of the new version of Drupal Core (Drupal 9) – a content management system (CMS) written in PHP – uncovering several ...
Blog – Checkmarx

Massive threat campaign strikes open-source repos, Sonatype spots new CursedGrabber malware

| | FEATURED, Nexus Intelligence Insights, Vulnerabilities
Sonatype has discovered more malware in the npm registry which, following our analysis and multiple cyber threat intelligence reports, has led to the discovery of a novel and large scale malware campaign ...
Sonatype Blog
Load more