Drupal released security updates for Drupal 7, 8.5 and 8.6 that address two "critical" security vulnerabilities that could be exploited for arbitrary code execution. The first vulnerability could be exploited by a remote attacker to execute arbitrary...
South Korea - Allegedstate-sponsored hackers compromised 10 PCs at ministry's Defense Acquisition Program Administration. Unknown hackers compromised 10 PCs at ministry's Defense Acquisition Program Administration which is the office that manages...
A huge trove of data belonging to the Oklahoma Department of Securities (ODS) was left unsecured on a server for at least a week. Another data leak made the headlines, a huge trove of data belonging to the Oklahoma Department of Securities (ODS) was left...
A critical flaw in online flight ticket booking system developed by Amadeus could impact almost half of the fight travelers of 141 airlines around the world A critical flaw in online flight ticket booking system developed by Amadeus could be exploited...
Early January, an interesting malware sample has been disclosed through the InfoSec community: a potential GreyEnergy implant still under investigation. Figure 1. Possible GreyEnergy sample This kind of threat, previously analyzed by third party...
By using multi-gesture trackpad along with Safari browser in MacBook Pro, one can view sensitive data which is cached in your Safari browser. (Note: This is not a back button browsing vulnerability) I figured out this issue while playing...
Security researchers at Check Point have discovered several flaws in the popular game Fortnite that could be exploited to takeover gamers'account. Security experts at Check Point discovered several issues in the popular online battle game Fortnite....
Researchers from Flashpoint linked the recently disclosed attack on Chilean interbank network Redbanc to the North Korean APT group Lazarus. Security experts at Flashpoint linked the recently disclosed attack on the Chilean interbank network to the dreaded...
Researchers from Trend Micro have analyzed the communication protocols used by cranes and other industrial machines and discovered several flaws. Security experts from Trend Micro have discovered several vulnerabilities in the communication protocols...
A security expert discovered a zero-day flaw in the processing of VCard files that could be exploited by a remote attacker to compromise a Windows PC The security expert John Page (@hyp3rlinx), discovered a zero-day vulnerability in the processing...
Yoroi Blog