Exploit
Zero-Day Vulnerability in Zoom Affected Windows 7 Users
A zero-day vulnerability affecting the Zoom client for Windows has been discovered that would allow an attacker to execute arbitrary code on remote devices. Only Windows 7 and older OSes were affected, ...
F5 BIG-IP Exploit, WiFi Router Security Updates, Password Reuse
In episode 129 for July 13th 2020: Impact of the F5-BIG-IP critical vulnerability, security updates and your WiFi router, and details about new research that shows how billions of compromised credentials are ...
Adobe to Remove Flash Download Links, Recommends People Uninstall It Now
Adobe is taking further steps in its Flash-dismantling process scheduled to take place by the end of 2020, and said users should uninstall it long before the end-of-life date. Removing Flash from ...
A Couple Critical Zoom Chat Vulnerabilities Found and Fixed
Security researchers found a couple of vulnerabilities affecting the chat features of the popular video conferencing app Zoom that, if exploited, would have let attackers achieve arbitrary code execution. While the mere ...
Most Apps Use Vulnerable Open-Source Libraries, Veracode Research Shows
New research from Veracode found that most applications use open-source libraries that also present vulnerabilities, but the distribution of such libraries depends on the programming languages used. Open-source libraries are ubiquitous, but ...
Thunderspy Attack Affects all Computers with Thunderbolt Released in the Past Decade
A slew of seven vulnerabilities identified in the Thunderbolt port allow an attacker with physical access to the device to bypass all security, no matter the platform. It affects all laptops and ...
Zoom Phishing Campaign Tricks People into Revealing Login Credentials
A new Zoom phishing campaign preys on people’s fears related to job security, tricking them into revealing credentials that criminals can abuse in a variety of ways. The practice of Zoom-bombing is ...
Some Users Lost Access to Their Nintendo Accounts
The Nintendo accounts of an unspecified number of users were compromised in the past few days in an attack from an unknown vector, at least for now. In just a few days, ...
Travelex Reportedly Paid $2.3 Million to Hackers after Sodinokibi Attack and Data Theft
An unnamed source within Travelex disclosed to The Wall Street Journal (WSJ) that the company paid $2.3 million in Bitcoin in an effort to restore functionality to its systems following a ransomware ...
HP Support Assistant App Riddled with Security Issues and Vulnerabilities, Researcher Finds
A security researcher found 10 vulnerabilities in the HP Support Assistant application shipped with every laptop the company makes, from the officially dead Windows 7 up to the latest version of Windows ...
