Security flaws in court record systems used in five US states exposed sensitive legal documents

Witness lists and testimony, mental health evaluations, detailed allegations of abuse and corporate trade secrets. These are some of the sensitive legal court filings that security researcher Jason Pa

Atlassian urges customers to take ‘immediate action’ to protect against data-loss security bug

Australian software giant Atlassian has warned of a critical security flaw that could lead to “significant data loss” for customers, just weeks after state-backed hackers targeted its products

Hackers exploit WinRAR zero-day bug to steal funds from broker accounts

Cybercriminals are exploiting a zero-day vulnerability in WinRAR, the venerable shareware archiving tool for Windows, to target traders and steal funds. Cybersecurity company Group-IB discovered the v

Ivanti warns customers another zero-day is under active attack

U.S. software giant Ivanti has scrambled to patch another zero-day vulnerability under active attack. The vulnerability, tracked as CVE-2023-38035 with a vulnerability severity rating of 9.8 out of 10

CISA says hackers are exploiting a new file transfer bug in Citrix ShareFile

Hackers are exploiting a newly discovered vulnerability in yet another enterprise file transfer software, the U.S. government’s cybersecurity agency has warned. CISA on Wednesday added a vulnerabili

Ivanti rushes to patch zero-day used to breach Norway’s government

Hackers exploited a zero-day flaw in Ivanti’s mobile endpoint management software to compromise a dozen Norwegian government agencies — and thousands of other organizations could also be at risk.

A simple bug exposed access to thousands of smart security alarm systems

U.S. power and electronics giant Eaton has fixed a security vulnerability that allowed a security researcher to remotely access thousands of smart security alarm systems. Security researcher Vangelis

Barracuda urges customers to remove and replace vulnerable hardware exploited by hackers

Barracuda Networks has told customers they must replace vulnerable email gateway appliances following the disclosure of a critical security flaw. The technology company, which provides security, netwo

Hackers launch another wave of mass-hacks targeting company file transfer tools

Security researchers are sounding the alarm after hackers were caught exploiting a newly discovered vulnerability in a popular file transfer tool used by thousands of organizations to launch a new wav

Critical-rated security flaw in Illumina DNA sequencing tech exposes patient data

The U.S. government has sounded the alarm about a critical software vulnerability found in genomics giant Illumina’s DNA sequencing devices, which hackers can exploit to modify or steal patients

PaperCut says hackers are exploiting ‘critical’ security flaws in unpatched servers

Print management software maker PaperCut says attackers are exploiting a critical-rated security vulnerability to gain access to unpatched servers on customer networks. PaperCut offers two print manag

Microsoft patches Windows zero-day bug used in ransomware attacks

Microsoft has patched a zero-day vulnerability affecting all supported versions of Windows, which researchers say hackers exploited to launch ransomware attacks. Microsoft said in a security alert on

Hatch Bank says hackers used Fortra bug to steal 140,000 customer Social Security numbers

Hatch Bank, a digital-first bank that provides infrastructure for fintech companies offering their own brand credit cards, confirmed hackers exploited a zero-day vulnerability in the company’s i

Security researchers warn of a new class of Apple bugs

Security researchers say they have uncovered a “new class” of vulnerabilities that could allow attackers to bypass Apple’s security protections in iOS and macOS to access users’ sensitive

Apple releases new fix for iPhone zero-day exploited by hackers

Apple on Monday released a new version of the iPhone and iPad’s operating systems to fix a vulnerability that hackers were exploiting in the wild, meaning they were taking advantage of it to hack Ap

Apple fixes bug that let malicious apps skirt macOS’ security protections

Microsoft says a vulnerability it discovered in a core macOS security feature, Gatekeeper, could have allowed attackers to compromise vulnerable Macs with malware. The flaw, tracked as CVE-2022-42821,

Aiphone door entry systems can be ‘easily’ bypassed thanks to NFC bug

The vulnerability in the door entry security system, used in government buildings and apartment complexes, cannot be fixed.

A bug in Abode’s home security system could let hackers remotely switch off cameras

A security vulnerability in Abode’s all-in-one home security system could allow malicious actors to remotely switch off customers’ security cameras. Abode’s Iota All-In-One Security Kit

WhatsApp fixes ‘critical’ security bug that put Android phone data at risk

WhatsApp has published details of a “critical”-rated security vulnerability affecting its Android app that could allow attackers to remotely plant malware on a victim’s smartphone during

Microsoft patches a new zero-day affecting all versions of Windows

Microsoft has released security fixes for a zero-day vulnerability affecting all supported versions of Windows that has been exploited in real-world attacks. The zero-day bug, tracked as CVE-2022-3796
Load More