Researchers with Positive Technologies have uncovered serious security vulnerabilities in industrial Ethernet switches manufactured by Moxa. The flaws can enable threat actors to take control of …
Smart Car Alarms Ironically Expose Millions of Vehicles to Remote Hijacking
Security researchers with Pen Test Partners have uncovered critical vulnerabilities in popular car alarm systems developed by Pandora and Viper. Not only can the flaws enable threat actors to obtain …
Continue Reading about Smart Car Alarms Ironically Expose Millions of Vehicles to Remote Hijacking
WordPress accounted for 90 percent of all hacked CMS sites in 2018
A new study by Sucuri highlights the security shortcomings of e-commerce and other websites. According to the report, the vast majority of e-commerce websites using PrestaShop, OpenCart, Joomla or …
Continue Reading about WordPress accounted for 90 percent of all hacked CMS sites in 2018
Data leaks, default passwords exposed in visitor management systems
Security researchers with IBM have found a series of significant vulnerabilities affecting popular visitor management systems that companies use to automate basic security and access control tasks …
Continue Reading about Data leaks, default passwords exposed in visitor management systems
More Than 22,000 Vulns Were Disclosed in 2018, 27% Without Fixes
New research by Risk Based Security (RBS) indicates that in 2018, over 22,020 software security vulnerabilities were discovered. The number is not yet final however, as not all flaws discovered in …
Continue Reading about More Than 22,000 Vulns Were Disclosed in 2018, 27% Without Fixes
Smart Homes at Risk Due to Unpatched Vulnerabilities, Weak Credentials
New research by Avast shows that 40.8% of smart homes can be remotely attacked because of the presence of at least one vulnerable device. Of the vulnerable devices, two-thirds (69.2%) have weak …
Continue Reading about Smart Homes at Risk Due to Unpatched Vulnerabilities, Weak Credentials
ToRPEDO Privacy Attack on 4G/5G Networks Affects All U.S. Carriers
A team of researchers from the Purdue University and the University of Iowa have discovered major flaws in 4G and 5G mobile protocols that allow for three types of attacks with privacy-breaking …
Continue Reading about ToRPEDO Privacy Attack on 4G/5G Networks Affects All U.S. Carriers
Researcher: Not Hard for a Hacker to Capsize a Ship at Sea
According to Ken Munro, a security researcher with Pen Test Partners, gaining access to the network of a ship is in most cases "a low-skill attack." As Munro explains: “[P]assword security and patch …
Continue Reading about Researcher: Not Hard for a Hacker to Capsize a Ship at Sea
New Vulnerabilities Found in Top Password Managers
New research by Independent Security Evaluators (ISE) has found serious flaws in the top password managers 1Password, Dashlane, KeePass and LastPass, which render the products about as secure as text …
Continue Reading about New Vulnerabilities Found in Top Password Managers
Microsoft, Adobe Both Close More Than 70 Security Issues
As part of Patch Tuesday, Microsoft and Adobe each released over 70 fixes for security flaws in their products. One of the Microsoft patches addresses a privilege escalation vulnerability …
Continue Reading about Microsoft, Adobe Both Close More Than 70 Security Issues