Cyber Security Threat Center

Hackers target 50K vulnerable Fortinet devices to steal passwords

Post author:Frank Crast
Post published:November 27, 2020
Post category:Cybersecurity Attacks Network Security Password Management Security Updates & Patches Vulnerabilities & Exploits

Cybersecurity experts are warning hackers are targeting nearly 50,000 vulnerable unpatched Fortinet VPNs to steal passwords.

Drupal patches 2 Critical arbitrary PHP code execution vulnerabilities

Post author:Frank Crast
Post published:November 27, 2020
Post category:Security Updates & Patches Vulnerabilities & Exploits

Drupal has released a security update that fixes two Critical arbitrary PHP code execution vulnerabilities (CVE-2020-28949 and CVE-2020-28948) in multiple versions of Drupal.

WAPDropper mobile malware threat

Post author:Frank Crast
Post published:November 25, 2020
Post category:Cybersecurity Attacks Malware Mobile Security

Cyber security experts are warning users to beware of a WAPDropper, a new mobile malware threat that could sign you up for premium-rate phone services and could shock you the next time you get your bill.

VMware issues workaround for Critical command injection vulnerability (CVE-2020-4006)

Post author:Frank Crast
Post published:November 25, 2020
Post category:Security Updates & Patches Vulnerabilities & Exploits

VMware has issued a workaround for a Critical command injection vulnerability CVE-2020-4006 in multiple VMware products.

Egregor Ransomware targets retail giant Cencosud, prints ransomware notes

Post author:Frank Crast
Post published:November 23, 2020
Post category:Cybersecurity Attacks Vulnerabilities & Exploits

Latin American retail giant Cencosud has suffered a ransomware attack by Egregor ransomware operators earlier this month that has impacted services in stores in multiple countries.

VMware patches 6 VMware SD-WAN Orchestrator vulnerabilities

Post author:Frank Crast
Post published:November 23, 2020
Post category:Security Updates & Patches Vulnerabilities & Exploits

VMware has patched six vulnerabilities that affect VMware SD-WAN Orchestrator. An attacker could exploit this vulnerability and take control of an unpatched system.

Drupal patches Critical RCE vulnerability (CVE-2020-13671)

Post author:Frank Crast
Post published:November 23, 2020
Post category:Security Updates & Patches Vulnerabilities & Exploits

Drupal has released a security update that fixes a Critical RCE vulnerability CVE-2020-13671 in multiple versions of Drupal.

Mozilla releases Firefox 83, fixes for 4 High risk vulnerabilities

Post author:Frank Crast
Post published:November 20, 2020
Post category:Security Updates & Patches Vulnerabilities & Exploits

The Mozilla Foundation has released Firefox 83 that includes security fixes for 4 High risk vulnerabilities.

Chrome 87 security update fixes 33 vulnerabilities

Post author:Frank Crast
Post published:November 20, 2020
Post category:Security Updates & Patches Vulnerabilities & Exploits

Google has released Chrome 87 security update (87.0.4280.66 for Windows and Linux, 87.0.4280.67 for Mac) with fixes for 33 vulnerabilities. The tech giant also released a new Chrome 87 version for both iOS and Android.

Cisco patches 3 Critical vulnerabilities in IMC, DNA Spaces Connector and IoT products

Post author:Frank Crast
Post published:November 19, 2020
Post category:Internet of Things (IoT)Network Security Security Updates & Patches Vulnerabilities & Exploits

Cisco has patched three Critical vulnerabilities in Cisco Integrated Management Controller (IMC), DNA Spaces Connector and IoT Field Network Director (FND) products.