Another zero-day vulnerability in SolarWinds Serv-U product exploited by cyber criminals

Ubuntu Security Notice 5001-1 – Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities. A local attacker could use this issue to execute arbitrary code. Mathy Vanhoef discovered that the Linux kernel’s WiFi implementation did not properly clear received fragments from memory in…

All defenses against Spectre side-channel attacks can now be considered broken, leaving billions of computers and other devices just as vulnerable today as they were when the hardware flaw was three years ago. A paper published on Friday by a team of computer scientists from the University of….

There is an Improper Validation of Array Index vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause code to execute, thus obtaining system permissions.

The White House was working closely with top US fuel pipeline operator Colonial Pipeline on Sunday (9 May) to help it recover from a ransomware attack that forced the company to shut a critical fuel network supplying populous eastern states. The attack is one of the most disruptive digital ransom schemes reported and has prompted…

3rd Party Risk Management , Breach Notification , Critical Infrastructure Security Tom Kellermann of VMware Carbon Black on the Timing, Impact of REvil Strike Tom Field (SecurityEditor) • July 7, 2021     Tom Kellermann, Head of Cybersecurity Strategy at VMware Carbon Black The Kaseya VSA…

New Delhi: A hacker has posted the phone numbers and sensitive account details of nearly 533 million Facebook users — about a fifth of the social networking platform‘s entire user base — including over 61 lakh Indian users which has been dumped on a public cybercrime forum. The leaked data includes Facebook ID numbers, profile…