Misconfigured Apache Airflow Platforms Threaten Organizations
Security researchers found thousands of credentials for popular cloud-hosted services exposed on insecure instances of the popular workflow management technology....
2021-10-06
CybersecuritySummit
Apache Warns of Zero-Day Exploit in the Wild — Patch You Web Servers Now!
Apache has issued patches to address two security vulnerabilities, including a path traversal and file disclosure flaw in its HTTP...
2021-10-05
Creating Wireless Signals with Ethernet Cable to Steal Data from Air-Gapped Systems
A newly discovered data exfiltration mechanism employs Ethernet cables as a “transmitting antenna” to stealthily siphon highly-sensitive data from air-gapped...
2021-10-05
New Azure AD Bug Lets Hackers Brute-Force Passwords Without Getting Caught
Cybersecurity researchers have disclosed an unpatched security vulnerability in the protocol used by Microsoft Azure Active Directory that potential adversaries...
2021-09-30
FinFisher malware hijacks Windows Boot Manager with UEFI bootkit
Commercially developed FinFisher malware now can infect Windows devices using a UEFI bootkit that it injects in the Windows Boot...
2021-09-28
OWASP Top 10 Updated With Three New Categories
On its 20th anniversary, the Open Web Application Security Project (OWASP) released the final version of their revised Top 10...
2021-09-28
Chrome 94 Update Patches Actively Exploited Zero-Day Vulnerability
Google has shipped an urgent Chrome update to address yet another zero-day vulnerability that has been actively exploited in attacks....
2021-09-27
Critical Cisco Bugs Allow Code Execution on Wireless, SD-WAN
Unauthenticated cyberattackers can also wreak havoc on networking device configurations. Cisco is warning three critical security vulnerabilities affect its flagship...
2021-09-27
Apple’s New iCloud Private Relay Service Leaks Users’ Real IP Addresses
A new as-yet unpatched weakness in Apple’s iCloud Private Relay feature could be circumvented to leak users’ true IP addresses...
2021-09-24
New Android Malware Targeting US, Canadian Users with COVID-19 Lures
An “insidious” new SMS smishing malware has been found targeting Android mobile users in the U.S. and Canada as part...
2021-09-24