Hostrisk Security Platform
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    1. Home
    2. Popular
    Log in to post
    • All categories
    • All Topics
    • New Topics
    • Watched Topics
    • Unreplied Topics
    • All Time
    • Day
    • Week
    • Month
    • Cerberus

      What’s Making Your Company a Ransomware Sitting Duck
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      72
      Views

      Cerberus

      What’s the low-hanging fruit for ransomware attackers? What steps could help to fend them off, and what’s stopping organizations from implementing those steps?

      https://threatpost.com/ransomware-sitting-duck/167040/

    • Cerberus

      Cisco Smart Switches Riddled with Severe Security Holes
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      64
      Views

      Cerberus

      The intro-level networking gear for SMBs could allow remote attacks designed to steal information, drop malware and disrupt operations.

      https://threatpost.com/cisco-smart-switches-security-holes/167031/

    • Cerberus

      Takeaways from the Colonial Pipeline Ransomware Attack
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      63
      Views

      Cerberus

      Hank Schless, senior manager of security solutions at Lookout, notes basic steps that organizations can take to protect themselves as ransomware gangs get smarter.

      https://threatpost.com/takeaways-colonial-pipeline-ransomware/166980/

    • Cerberus

      Peloton Bike+ Bug Gives Hackers Complete Control
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      79
      Views

      Cerberus

      An attacker with initial physical access (say, at a gym) could gain root entry to the interactive tablet, making for a bevy of remote attack scenarios.

      https://threatpost.com/peloton-bike-bug-hackers-control/166960/

    • Cerberus

      IKEA Fined $1.2M for Elaborate ‘Spying System’
      Privacy • • Cerberus

      1
      0
      Votes
      1
      Posts
      64
      Views

      Cerberus

      A French court fined the furniture giant for illegal surveillance on 400 customers and staff.

      https://threatpost.com/ikea-fined-spying-system/166991/

    • Cerberus

      Microsoft Gets Second Shot at Banning hiQ from Scraping LinkedIn User Data
      Privacy • • Cerberus

      1
      0
      Votes
      1
      Posts
      90
      Views

      Cerberus

      Decision throws out previous ruling in favor of hiQ Labs that prevented Microsoft’s business networking platform to forbid the company from harvesting public info from user profiles.

      https://threatpost.com/court-linkedin-data-scraping/166927/

    • Cerberus

      Volkswagen Vendor Exposed Data of 3.3m Drivers
      Privacy • • Cerberus

      1
      0
      Votes
      1
      Posts
      68
      Views

      Cerberus

      Nearly all of the leaked data was for owners or wannabe owners of the automaker’s luxury brand of Audis, now at greater risk for phishing, ransomware or car theft.

      https://threatpost.com/vw-data-3m-audi-drivers/166892/

    • Cerberus

      Apple Patches Zero-Day Flaw in MacOS that Allows for Sneaky Screenshots
      Privacy • • Cerberus

      1
      0
      Votes
      1
      Posts
      68
      Views

      Cerberus

      Security researchers at Jamf discovered the XCSSET malware exploiting the vulnerability, patched in Big Sur 11.4, to take photos of people’s computer screens without their knowing.

      https://threatpost.com/apple-patches-zero-day-flaw-in-macos-that-allows-for-sneaky-screenshots/166428/

    • Cerberus

      Unpatched Linux Marketplace Bugs Allow Wormable Attacks, Drive-By RCE
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      57
      Views

      Cerberus

      A pair of zero-days affecting Pling-based marketplaces could allow for some ugly attacks on unsuspecting Linux enthusiasts – with no patches in sight.

      https://threatpost.com/unpatched-linux-marketplace-bugs-rce/167155/

    • Cerberus

      SonicWall ‘Botches’ October Patch for Critical VPN Bug
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      58
      Views

      Cerberus

      Company finally rolls out the complete fix this week for an RCE flaw affecting some 800,000 devices that could result in crashes or prevent users from connecting to corporate resources.

      https://threatpost.com/sonicwall-botches-critical-vpn-bug/167152/

    • Cerberus

      Cryptominers Slither into Python Projects in Supply-Chain Campaign
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      60
      Views

      Cerberus

      These code bombs lurk in the PyPI package repository, waiting to be inadvertently baked into software developers’ applications.

      https://threatpost.com/cryptominers-python-supply-chain/167135/

    • Cerberus

      Email Bug Allows Message Snooping, Credential Theft
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      60
      Views

      Cerberus

      A year-old proof-of-concept attack that allows an attacker to bypass TLS email protections to snoop on messages has been patched.

      https://threatpost.com/email-bug-message-snooping-credential-theft/167125/

    • Cerberus

      Critical Palo Alto Cyber-Defense Bug Allows Remote ‘War Room’ Access
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      99
      Views

      Cerberus

      Remote, unauthenticated cyberattackers can infiltrate and take over the Cortex XSOAR platform, which anchors unified threat intelligence and incident responses.

      https://threatpost.com/critical-palo-alto-bug-remote-war-room/167169/

    • Cerberus

      Atlassian Bugs Could Have Led to 1-Click Takeover
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      57
      Views

      Cerberus

      A supply-chain attack could have siphoned sensitive information out of Jira, such as security issues on Atlassian cloud, Bitbucket and on-prem products.

      https://threatpost.com/atlassian-bugs-could-have-led-to-1-click-takeover/167203/

    • Cerberus

      30M Dell Devices at Risk for Remote BIOS Attacks, RCE
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      48
      Views

      Cerberus

      Four separate security bugs would give attackers almost complete control and persistence over targeted devices, thanks to a faulty update mechanism.

      https://threatpost.com/dell-bios-attacks-rce/167195/

    • Cerberus

      Critical VMware Carbon Black Bug Allows Authentication Bypass
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      47
      Views

      Cerberus

      The 9.4-rated bug in AppC could give attackers admin rights, no authentication required, letting them attack anything from PoS to industrial control systems.

      https://threatpost.com/vmware-carbon-black-authentication-bypass/167226/

    • Cerberus

      Cisco ASA Bug Now Actively Exploited as PoC Drops
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      56
      Views

      Cerberus

      In-the-wild XSS attacks have commenced against the security appliance (CVE-2020-3580), as researchers publish exploit code on Twitter.

      https://threatpost.com/cisco-asa-bug-exploited-poc/167274/

    • Cerberus

      My Book Live Users Wake Up to Wiped Devices, Active RCE Attacks
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      87
      Views

      Cerberus

      “I am totally screwed,” one user wailed after finding years of data nuked. Western Digital advised yanking the NAS storage devices offline ASAP: There’s an exploit.

      https://threatpost.com/my-book-live-wiped-rce-attacks/167270/

    • Cerberus

      NVIDIA Patches High-Severity GeForce Spoof-Attack Bug
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      34
      Views

      Cerberus

      A vulnerability in NVIDIA’s GeForce Experience software opens the door to remote data access, manipulation and deletion.

      https://threatpost.com/nvidia-high-severity-geforce-spoof-bug/167345/

    • Cerberus

      Details of RCE Bug in Adobe Experience Manager Revealed
      Vulnerabilities • • Cerberus

      1
      0
      Votes
      1
      Posts
      43
      Views

      Cerberus

      Disclosure of a bug in Adobe’s content-management solution - used by Mastercard, LinkedIn and PlayStation – were released.

      https://threatpost.com/rce-bug-in-adobe-revealed/167382/