CVE-2021-1078
NVIDIA Windows GPU Display Driver for Windows, all versions, contains a vulnerability in the kernel driver (nvlddmkm.sys) where a NULL pointer dereference may lead to system crash.
Federal agencies are warning of potential ransomware attacks targeted at U.S. organizations ahead of Labor Day weekend following cyberattacks during previous holidays this year. The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday issued an alert outlining their concerns, noting that while there was no intelligence around specific threats, other holiday weekends…
Business Continuity Management / Disaster Recovery , Fraud Management & Cybercrime , Governance & Risk Management ‘It Was the Right Thing to Do for the Country’ Doug Olenick (DougOlenick) • May 19, 2021 Colonial Pipeline CEO Joseph Blount (Photo: Colonial Pipeline Co.) Colonial Pipeline Co.’s CEO, Joseph Blount, said Wednesday that he authorized…
Cybersecurity Biden signs much-anticipated cybersecurity executive order By Justin Katz May 12, 2021 President Joe Biden on Wednesday signed his long-awaited executive order designed to confront the myriad of cybersecurity challenges facing the country — ranging from the supply chain attack that compromised nine federal agencies to ransomware that ultimately shut down…
Facebook said it disrupted efforts by hackers in China to spy on supporters of Uyghurs (Representational) San Francisco: Facebook on Wednesday said it disrupted efforts by hackers in China to spy on supporters of the Uyghur minority living outside that country. A group of well-resourced hackers in China targeted hundreds of Uyghur activists, journalists, and…
Industrial cybersecurity company Claroty has discovered a severe memory protection bypass vulnerability in Siemens programmable logic controllers (PLC) that could enable attackers to remain undetected while running code of their choice. Claroty has been able to achieve native code execution on the Siemens SIMATIC S7-1200 and S7-1500 PLC CPUs by bypassing the PLC sandbox within…
After security researchers have developed and published proof-of-concept (PoC) exploit code targeting a critical vCenter remote code execution (RCE) vulnerability, attackers are now actively scanning for vulnerable Internet-exposed VMware servers. The scanning activity was spotted by threat intelligence company Bad Packets just one day after VMware patched the critical vulnerability. Thousands of unpatched vCenter servers are…