The Internet Systems Consortium (ISC) has released two security updates that fix vulnerabilities on multiple versions of BIND. In addition, Microsoft also issued a new DNS security advisory and workaround. The flaws could allow a remote attacker to exploit and cause a denial of service condition.
BIND and Microsoft DNS security updates Read More »
U.S. government cybersecurity experts are providing guidance on the “top 10” most commonly exploited vulnerabilites. The alert helps highlight the importance of patching and prioritizing vulnerabilities with known exploits.
Patch these 10 most commonly exploited vulnerabilities Read More »
A security researcher disclosed four vulnerabilities in QNAP PhotoStation and CGI programs. All QNAP network-attached storage (NAS) devices running Photo Station are vulnerable and of those, approximately 450,000 QNAP NAS devices are exposed to the internet.
450K internet-connected QNAP devices exposed to RCE vulnerabilities Read More »
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) issued a warning of likely targeting and compromise of U.S. COVID-19 research organizations by the People’s Republic of China (PRC).
FBI and CISA warning of Chinese targeting COVID-19 research organizations Read More »
Adobe has released security updates to address vulnerabilities in Adobe Acrobat and Reader, as well as Adobe DNG Software Development Kit (SDK). Successful exploitation could lead to arbitrary code execution or information disclosure.
Adobe releases security updates for Adobe Acrobat and Reader, Adobe DNG SDK Read More »
Microsoft released the May 2020 Security Updates that includes 111 unique vulnerability fixes, 16 of those rated critical.
Microsoft May 2020 Security Updates (16 Critical vulnerabilities fixed) Read More »
In case you missed it last week, SaltStack released security updates to fix two critical Salt vulnerabilities. Multiple vendors that integrate Salt into their products have also released patches or workarounds to address the flaws.
SaltStack, multiple vendors fix Critical vulnerabilities in Salt Read More »
Popular internet forum software maker vBulletin has patched a Critical vulnerability that affects multiple vBulletin 5 versions.
vBulletin patches Critical ‘incorrect access control’ vulnerability Read More »
A large Snake ransomware campaign has targeted healthcare companies worldwide. One of the victims include Fresenius, Europe’s largest private hospital operator and leading healthcare company based out of Germany.
Snake ransomware campaign targets healthcare companies Read More »
Cisco has released 12 High severity security advisories for Cisco Adaptive Security Appliance (ASA) Software and Firepower products. In addition, a security fix was also released to address a Snort HTTP detection engine file policy bypass Vulnerability.
Cisco releases 12 High severity advisories for multiple products Read More »
