CVE-2021-1522
CVE-2021-1522
Microsoft Azure customers have been informed of a newly found critical bug in Cosmos DB that enables intruders to remotely take control over databases by giving them complete admin access with no authorization requested. Anyone can read, change, or delete databases as they please, according to Microsoft. What Happened? This month, cybersecurity researchers at the…
Bluetooth Vulnerabilities Allow Impersonation Attacks on Devices | IT Security News 27. May 2021 This article has been indexed from Heimdal Security Blog The Carnegie Mellon University (CMU) has recently shared an advisory highlighting some newly discovered Bluetooth security bugs. The advisory states that security specialists at France’s national cybersecurity agency ANSSI have discovered multiple…
Suspected Russian hackers gained access to email accounts belonging to the Trump administration’s head of the Department of Homeland Security and members of the department’s cybersecurity staff whose jobs included hunting threats from foreign countries, The Associated Press has learned. The intelligence value of the hacking of then-acting Secretary Chad Wolf and his staff is…
Hardware maker has issued an update to fix multiple critical privilege escalation vulnerabilities that have gone undetected since 2009. Hundreds of millions of Dell laptops, notebooks, and tablets are at risk of compromise from a set of five high-severity flaws that have been undetected since at least 2009. The flaws allow an attacker who already has…
Nearly one third (28.22 per cent) of PC home users in India are at high risk of cyber attacks, according to a report by digital security and privacy provider Avast. Avast’s latest Global PC Risk Report also looked into the possibility of users facing aadvanced’ threats — defined as more sophisticated or threats never seen…
A British trade union is demanding an apology from the West Midlands Trains rail company for running a phishing readiness test disguised as a bonus payment reward for staff that worked through the Covid-19 pandemic. The Transport Salaried Staffs’ Association (TSSA) published the text of the phishing email, which was made to look like it…