/ Security News /

Google Project Zero’s security researcher has discovered a critical remote code execution (RCE) vulnerability in Ghostscript—an open source interpreter for Adobe Systems’ PostScript and PDF page description languages. Written entirely in C, Ghostscript is a package of software that runs on different platforms, including Windows, macOS, and a wide variety of Unix systems, offering software …

/ Security News /

Sam Thomas, a security researcher from Secarma, has discovered a new exploitation technique that could make it easier for hackers to trigger critical deserialization vulnerabilities in PHP programming language using previously low-risk considered functions. The new technique leaves hundreds of thousands of web applications open to remote code execution attacks, including websites powered by some …

/ Security News /

If you are using a Bluetooth enabled device, be it a smartphone, laptop, smart TV or any other IoT device, you are at risk of malware attacks that can carry out remotely to take over your device even without requiring any interaction from your side. Security researchers have just discovered total 8 zero-day vulnerabilities in …

/ Security News /

It is possible for any common network router to secretly leak sensitive information such as employee passwords or company data, according to recent research from experts at Ben-Gurion University of the Negev (BGU) Cyber Security Research Center (CSRC). In a research paper published by the university, researchers explained how they used the LED light on …

/ Government Security Alerts /

Systems Affected Overview The Simple Network Management Protocol (SNMP) may be abused to gain unauthorized access to network devices. SNMP provides a standardized framework for a common language that is used for monitoring and managing devices in a network. This Alert provides information on SNMP best practices, along with prevention and mitigation recommendations. Description SNMP …

/ Security News /

A team of researchers from the University of Michigan discovered that hundreds of applications in Google Play Store have a security hole that could potentially allow hackers to steal data from and even implant malware on millions of Android smartphones. The University of Michigan team says that the actual issue lies within apps that create …

/ Security News /

Image: CNET On Tuesday, the US House of Representatives will vote on whether to repeal the Federal Communications Commission (FCC)’s 2016 broadband privacy regulations. Last week, the Senate voted to repeal the regulations. The decision was made along strict party lines—50 Republican senators voted for the bill—and could impact the Obama-era regulations that were put …

/ Government Security Alerts /

Overview Throughout the year, scam artists pose as legitimate entities—such as the Internal Revenue Service (IRS), other government agencies, and financial institutions—in an attempt to defraud taxpayers. They employ sophisticated phishing campaigns to lure users to malicious sites or entice them to activate malware in infected email attachments. To protect sensitive data, credentials, and payment …