On Tuesday, an Israel-based cybersecurity company issued a caveat that millions of IoT devices globally are likely to be exposed to remote attacks on account of grave security faults impacting the Treck TCP/IP stack. Treck TCP/IP is a high-profile TCP/IP protocol set intended explicitly for embedded systems. JSOF investigators have Continue Reading
Mobile operators will continue to be impacted by flaws in the GPRS Tunneling Protocol (GTP) even as the former migrate to 5G infrastructure. As per various reports, cyber-security companies Positive Technologies and A10 Networks came up with a litany of flaws in this legacy mobile protocol, including revelation of subscriber Continue Reading
What is PCI DSS? Constituted by a few renowned financial services including Visa, MasterCard, in 2004, Payment Card Industry Data Security Standard (PCI DSS) is a set of safety standards aimed at protecting credit and debit card transactions against data holdup and scam. The PCI SSC is not legally authorized Continue Reading
Details of a flaw recently discovered in the Facebook Messenger application for Windows were disclosed Thursday by cybersecurity researchers at Reason Labs. The fault, which rests in Messenger version 460.16, could let hackers leverage the app to possibly perform malicious files already existing on a negotiated system in a bid Continue Reading
On Tuesday, one of the flaws that Microsoft highlighted on June 2020 Patch is a Server Message Block (SMB) protocol bug that could let an attacker leak kernel memory remotely, without verification. Dubbed SMBleed and tracked as CVE-2020-1206, the flaw could be chained with SMBGhost (CVE-2020-0796), a fault highlighted in March 2020, to attain pre-authentication remote code Continue Reading
By