The Git project has released patches for a severe remote code execution (RCE) vulnerability, CVE-2021-21300 that can be exploited by attackers when their malicious repos are cloned.... Read More
Security
A critical vulnerability CVE-2021-24171 in WooCommerce Upload Files plugin can be exploited through multiple routes like double extension and path traversal attacks.... Read More
A gray hat hacker has published over 7,000 dependency confusion packages to npm and PyPI repositories, and continues to post thousands more, in real time.... Read More
ThyssenKrupp has again been hit by a cyber attack from the NetWalker ransomware group, after previously having been stricken by two other ransomware groups.... Read More
Hacker claims to sell 1.3 million records of Hyundai Russia customers on hacker forum... Read More
The ChastityLock malware locks your tool up and has got you by the balls, literally. ... Read More
A Cross-Site Scripting (XSS) protection bypass technique has been revealed for Cloudflare Web Application Firewall (WAF). The exploit has been publicly known since 2019 but remains unpatched.... Read More
Thousands of Zyxel firewalls and access point controllers contain a secret, undocumented hardcoded password giving anyone admin access through this zero-day.... Read More
The Golang malware breaches Windows, Linux servers and exploits popular vulnerabilities such as a critical RCE in Oracle WebLogic. ... Read More
Kaggle, an online community of data scientists and machine learning practitioners had been exposing private competition data due to a misconfigured API. This could potentially give an unfair competitive advantage to participants.... Read More
Sea Turtle Cyber Espionage Campaign Targets Telecommunication and IT Companies in the Netherlands 
Rogue WordPress plugin: Threat hunters uncover credit card skimming campaign targeting e-commerce sites 
Albanian Parliament and telco ‘One Albania’ suffer cyber attacks 
Carbanak Banking Malware Resurfaces with Updated Tactics in Ransomware Attacks
Share this: