McAfee has patched 2 high-severity vulnerabilities in a component of its McAfee Enterprise product that attackers can use to escalate privileges, including up to SYSTEM.
Take a break and read all about it
Zoho’s comprehensive endpoint-management platform has an authentication-bypass bug (CVE-2021-44757) that could lead to remote code execution. A critical security vulnerability in the Zoho ManageEngine Desktop
Cyber-attacks increased 50% YoY in 2021 & peaked in Dec. due to a deluge of Log4j exploits, researchers have discovered. 2021 ended under a Log4Shell-induced
A critical flaw in the H2 open-source Java SQL database is similar to the Log4J vulnerability, but do not pose a widespread threat. Researchers discovered
Media giant Impresa, which owns the largest TV station & newspaper in Portugal, was crippled by a ransomware attack just hours into 2022. The suspected ransomware gang
Hackers behind a crypto mining campaign have managed to avoid detection since 2019. The attacks exploited misconfigured Docker APIs that allowed them to gain network entry &
The Microsoft Azure App Service has a 4-year-old vulnerability that could reveal the source code of web apps written in PHP, Python, Ruby or Node,