Nefarious local users are likely to exploit shared memory flaw that IBM fixed in its Db2 data management products, leading to information disclosure. Tracked as CVE-2020-4414, the flaw was exposed by researchers from Trustwave, which is caused by the dearth of overt memory protections for the shared memory used by Db2 Continue Reading
Researchers have highlighted that the actively exploited Windows deceiving flaw fixed by Microsoft last week has existed for more than two years. The tech giant’s August 2020 Patch Tuesday updates dealt with 120 flaws, including an Internet Explorer zero-day that has been chained with a Windows vulnerability in attacks connected Continue Reading
In August, Microsoft has patched 120 flaws across 13 different products, from Edge to Windows, and from SQL Server to the .NET Framework. Tracked as CVE-2020-1464, the Windows spoofing flaw is linked to Windows erroneously authenticating file signatures. A hacker can exploit this vulnerability to sidestep security features and load Continue Reading
Are you a TeamViewer user? If yes, then make sure you’re using the latest version of the popular remote desktop connection software for Windows. Of late, TeamViewer team unveiled a new version of its software that comprises a patch for a critical flaw (CVE 2020-13699), which, if abused, is likely Continue Reading
On Monday, the UK’s and the US’ cyber-security agencies published a joint security alert about QSnatch malware that has infected network-attached storage (NAS) devices. The United States’ Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber Security Centre (NCSC) say that attacks with the QSnatch malware took Continue Reading
By