After news broke that hackers have begun leveraging the BlueKeep flaw to deliver cryptocurrency miners, software giant Microsoft has cautioned that the activity will possibly also be used to produce more impactful and harmful payloads. There is no proof that BlueKeep has been misused to distribute ransomware or other types Continue Reading
Social media behemoth Facebook said Tuesday that a slew of third-party app developers have indecorously accessed the names and profile pictures of members in several Facebook groups. In the wake of disclosures regarding Cambridge Analytica in April 2018, the company cracked down on its software, limiting what information apps could Continue Reading
Cisco issued a security advisory for a bypass a critical susceptibility in its REST API of Cisco Elastic Services Controller. The company said that the fault, CVE-2019-1867, could permit an unverified, remote invader to avoid verification on the REST API. The issue is triggered by an inappropriate authentication of API Continue Reading
According to research, spiteful actors could exploit serious security flaw in a peer-to-peer (P2P) communications technology used across millions of internet of things (IoT) devices.
On Wednesday, Cisco issued patches for 30 flaws, including a grave bug affecting ASR 9000 Series Aggregation Services Routers running IOS XR 64-bit software. The flaw, tracked as CVE-2019-1710 and containing a CVSS score of 9.8, could allow an unverified, distant attacker to get access to internal applications running on Continue Reading
By