NVIDIA Patches High-Severity GeForce Spoof-Attack Bug
A vulnerability in NVIDIA’s GeForce Experience software opens the door to remote data access, manipulation and deletion.
NVIDIA gaming graphics software called GeForce Experience, bundled with the chipmaker’s popular GTX...
My Book Live Users Wake Up to Wiped Devices, Active RCE Attacks
“I am totally screwed,” one user wailed after finding years of data nuked. Western Digital advised yanking the NAS storage devices offline ASAP: There’s an exploit.
If you haven’t already,...
Cisco ASA Bug Now Actively Exploited as PoC Drops
In-the-wild XSS attacks have commenced against the security appliance (CVE-2020-3580), as researchers publish exploit code on Twitter.
Researchers have dropped a proof-of-concept (PoC) exploit on Twitter for a known cross-site...
Atlassian Bugs Could Have Led to 1-Click Takeover
A supply-chain attack could have siphoned sensitive information out of Jira, such as security issues on Atlassian cloud, Bitbucket and on-prem products.
Atlassian, a platform used by 180,000 customers to...
Critical VMware Carbon Black Bug Allows Authentication Bypass
The 9.4-rated bug in AppC could give attackers admin rights, no authentication required, letting them attack anything from PoS to industrial control systems.
VMware has fixed an uber-severe bug in...
Unpatched Linux Marketplace Bugs Allow Wormable Attacks, Drive-By RCE
A pair of zero-days affecting Pling-based marketplaces could allow for some ugly attacks on unsuspecting Linux enthusiasts — with no patches in sight.
An unpatched stored cross-site-scripting (XSS) security vulnerability...
Critical Palo Alto Cyber-Defense Bug Allows Remote ‘War Room’ Access
Remote, unauthenticated cyberattackers can infiltrate and take over the Cortex XSOAR platform, which anchors unified threat intelligence and incident responses.
A critical security bug in Palo Alto Networks’ Cortex XSOAR...
Email Bug Allows Message Snooping, Credential Theft
A year-old proof-of-concept attack that allows an attacker to bypass TLS email protections to snoop on messages has been patched.
Researchers warn hackers can snoop on email messages by...
Agent Tesla RAT Returns in COVID-19 Vax Phish
An unsophisticated campaign shows that the pandemic still has long legs when it comes to being social-engineering bait.
The Agent Tesla remote access trojan (RAT) is scurrying around the internet...
Bugs in NVIDIA’s Jetson Chipset Opens Door to DoS Attacks, Data Theft
Chipmaker patches nine high-severity bugs in its Jetson SoC framework tied to the way it handles low-level cryptographic algorithms.
Flaws impacting millions of internet of things (IoT) devices running...
