A security researcher has published proof of concept (PoC) for exploit code of an Apache Solr remote code execution vulnerability CVE-2019-12409.
Security researchers discovered an unsecured Adobe Creative Cloud Elasticsearch database that exposed nearly 7.5 million user records.
The National Institute of Standards and Technology (NIST) has issued new Security-Focused Configuration Management of Information Systems guidelines (SP 800-128).
A hacker group known for intrusions against oil and gas facilities is now expanding attacks against the electric utility sector.
A new botnet dubbed "GoldBrute" targets 1.5 million publicly exposed RDP servers on the internet via brute force attack.
A China-based cyber campaign dubbed "Nansh0u" has targeted tens of thousands of unsecured Windows MS-SQL and PHPMyAdmin servers worldwide.
Siemens Healthineers, a Siemens company that makes medical products, has disclosed multiple software products are impacted by the Remote Desktop Services (RDS) or BlueKeep vulnerability.
Security experts setup a honeypot to lure attackers into an exposed insecure MySQL server and install GandCrab ransomware.
A new security report highlights some of the risks organizations face when moving to the cloud and potential configuration vulnerabilities.
Security researchers have discovered nearly 50,000 misconfigured SAP systems may be vulnerable to exploits called "10KBlaze" that could lead to the full compromise of SAP applications.