Internet Security

Critical Microsoft Azure RCE flaw impacted multiple services

January 19, 2023 add comment
Researchers found a new critical remote code execution (RCE) flaw impacting multiple services related to Microsoft Azure. Researchers from Ermetic found a remote code execution flaw, dubbed EmojiDeploy, that... Read more »

Mailchimp discloses a new security breach, the second one in 6 months

January 19, 2023 add comment
Popular email marketing and newsletter platform Mailchimp was hacked and the data of dozens of customers were exposed.  The popular email marketing and newsletter platform Mailchimp was hacked twice... Read more »

US CISA adds Centos Web Panel RCE CVE-2022-44877 to its Known Exploited Vulnerabilities Catalog

January 19, 2023 add comment
US CISA added the vulnerability CVE-2022-44877 in CentOS Control Web Panel utility to its Known Exploited Vulnerabilities Catalog. The US CISA added the Centos Web Panel 7 unauthenticated remote... Read more »

Two critical flaws discovered in Git source code version control system

January 18, 2023 add comment
The maintainers of the Git source code version control system urge to update the software to fix two critical vulnerabilities. The maintainers of the Git source code version control system announced to have... Read more »

A couple of bugs can be chained to hack Netcomm routers

January 18, 2023 add comment
A couple of critical vulnerabilities have been discovered in Netcomm rourers, experts warn of their potential exploitation in the wild. The vulnerabilities discovered in the Netcomm routers are a... Read more »

Myrocket HR platform’s data leak turns into privacy nightmare for employees

January 18, 2023 add comment
HR management platform myrocket.co has exposed the personal information of hundreds of thousands of employees and millions of job candidates. Original post at CyberNews On December 12, 2022, the... Read more »

Experts found SSRF flaws in four different Microsoft Azure services

January 18, 2023 add comment
SSRF vulnerabilities in four Microsoft Azure services could be exploited to gain unauthorized access to cloud resources. Researchers at the security firm Orca discovered that four different Microsoft Azure... Read more »

1,000 ships impacted by a ransomware attack on maritime software supplier DNV

January 17, 2023 add comment
A ransomware attack against the maritime software supplier DNV impacted approximately 1,000 vessels. About 1,000 vessels have been impacted by a ransomware attack against DNV, one of the major... Read more »

How to abuse GitHub Codespaces to deliver malicious content

January 17, 2023 add comment
Researchers demonstrated how to abuse a feature in GitHub Codespaces to deliver malware to victim systems. Trend Micro researchers reported that it is possible to abuse a legitimate feature... Read more »

Patch your Zoho ManageEngine instance immediately! PoC Exploit for CVE-2022-47966 will be released soon

January 17, 2023 add comment
A PoC exploit code for the unauthenticated remote code execution vulnerability CVE-2022-47966 in Zoho ManageEngine will be released soon. The CVE-2022-47966 flaw is an unauthenticated remote code execution vulnerability... Read more »
Subscribe to our Newsletter