Drupal has released security updates to address Critical cross site request forgery (CSRF) and Arbitrary PHP code execution vulnerabilities affecting multiple versions of Drupal. A remote attacker could exploit these…
Cisco has released a Critical security advisory for three Treck IP Stack vulnerabilities, as well as seven other High severity advisories that affect multiple products.
The Internet Systems Consortium (ISC) has released security updates that fix two vulnerabilities in multiple versions of ISC Berkeley Internet Name Domain (BIND).
Adobe has released security updates to address vulnerabilities in Adobe After Effects, Audition, Campaign Classic, Illustrator, Premiere Pro and Premiere Rush products.
Security researchers have identified a series of 19 zero-day vulnerabilities in a lightweight TCP/IP stack library used in many IoT products. The vulnerabilities dubbed Ripple20 likely impact hundreds of millions of IoT devices.
Google has released Chrome 83.0.4103.106 security update for Windows, Mac and Linux. An attacker could exploit these vulnerabilities to take control of impacted systems.
The Internet Crime Complaint Center (IC3) and Federal Bureau of Investigation (FBI) issued a new warning that cyber actors are using banking trojans and fake mobile banking apps to steal…
Major European energy company giant Enel Group was a target of a recent ransomware attack that impacted its internal network. The Enel Group is an Italian energy company active in the electricity generation and distribution sectors, as well as distribution of natural gas.
WordPress has released WordPress 5.4.2 security and maintenance update that includes fixes for multiple security issues and bugs. All WordPress versions 5.4.1 and earlier are affected.
The GNU Transport Layer Security Library (GnuTLS) patched a vulnerability hidden in code for nearly two years. The issue applies to a flaw in how TLS 1.3 session resumption works without a master key. As a result, an attacker could exploit and launch man-in-the-middle (MITM) attacks.