Hackers target 50K vulnerable Fortinet devices to steal passwords

• Post author:Frank Crast
• Post published:November 27, 2020
• Post category:Cybersecurity Attacks/Network Security/Password Management/Security Updates & Patches/Vulnerabilities & Exploits

Cybersecurity experts are warning hackers are targeting nearly 50,000 vulnerable unpatched Fortinet VPNs to steal passwords.

Continue Reading Hackers target 50K vulnerable Fortinet devices to steal passwords

Drupal patches 2 Critical arbitrary PHP code execution vulnerabilities

• Post author:Frank Crast
• Post published:November 27, 2020
• Post category:Security Updates & Patches/Vulnerabilities & Exploits

Drupal has released a security update that fixes two Critical arbitrary PHP code execution vulnerabilities (CVE-2020-28949 and CVE-2020-28948) in multiple versions of Drupal.

Continue Reading Drupal patches 2 Critical arbitrary PHP code execution vulnerabilities

WAPDropper mobile malware threat

• Post author:Frank Crast
• Post published:November 25, 2020
• Post category:Cybersecurity Attacks/Malware/Mobile Security

Cyber security experts are warning users to beware of a WAPDropper, a new mobile malware threat that could sign you up for premium-rate phone services and could shock you the next time you get your bill.

Continue Reading WAPDropper mobile malware threat

Egregor Ransomware targets retail giant Cencosud, prints ransomware notes

• Post author:Frank Crast
• Post published:November 23, 2020
• Post category:Cybersecurity Attacks/Vulnerabilities & Exploits

Latin American retail giant Cencosud has suffered a ransomware attack by Egregor ransomware operators earlier this month that has impacted services in stores in multiple countries.

Continue Reading Egregor Ransomware targets retail giant Cencosud, prints ransomware notes

VMware patches 6 VMware SD-WAN Orchestrator vulnerabilities

• Post author:Frank Crast
• Post published:November 23, 2020
• Post category:Security Updates & Patches/Vulnerabilities & Exploits

VMware has patched six vulnerabilities that affect VMware SD-WAN Orchestrator. An attacker could exploit this vulnerability and take control of an unpatched system.

Continue Reading VMware patches 6 VMware SD-WAN Orchestrator vulnerabilities

Drupal patches Critical RCE vulnerability (CVE-2020-13671)

• Post author:Frank Crast
• Post published:November 23, 2020
• Post category:Security Updates & Patches/Vulnerabilities & Exploits

Drupal has released a security update that fixes a Critical RCE vulnerability CVE-2020-13671 in multiple versions of Drupal.

Continue Reading Drupal patches Critical RCE vulnerability (CVE-2020-13671)

Mozilla releases Firefox 83, fixes for 4 High risk vulnerabilities

• Post author:Frank Crast
• Post published:November 20, 2020
• Post category:Security Updates & Patches/Vulnerabilities & Exploits

The Mozilla Foundation has released Firefox 83 that includes security fixes for 4 High risk vulnerabilities.

Continue Reading Mozilla releases Firefox 83, fixes for 4 High risk vulnerabilities

Chrome 87 security update fixes 33 vulnerabilities

• Post author:Frank Crast
• Post published:November 20, 2020
• Post category:Security Updates & Patches/Vulnerabilities & Exploits

Google has released Chrome 87 security update (87.0.4280.66 for Windows and Linux, 87.0.4280.67 for Mac) with fixes for 33 vulnerabilities. The tech giant also released a new Chrome 87 version for both iOS and Android.

Continue Reading Chrome 87 security update fixes 33 vulnerabilities

Cisco patches 3 Critical vulnerabilities in IMC, DNA Spaces Connector and IoT products

• Post author:Frank Crast
• Post published:November 19, 2020
• Post category:Internet of Things (IoT)/Network Security/Security Updates & Patches/Vulnerabilities & Exploits

Cisco has patched three Critical vulnerabilities in Cisco Integrated Management Controller (IMC), DNA Spaces Connector and IoT Field Network Director (FND) products.

Continue Reading Cisco patches 3 Critical vulnerabilities in IMC, DNA Spaces Connector and IoT products

Cisco patches 3 Security Manager vulnerabilities

• Post author:Frank Crast
• Post published:November 18, 2020
• Post category:Network Security/Security Updates & Patches/Vulnerabilities & Exploits

Cisco has patched three Cisco Security Manager vulnerabilities, one rated Critical and two High severity, that could allow a remote attacker to exploit and obtain sensitive information.

Continue Reading Cisco patches 3 Security Manager vulnerabilities