β Critical Netgear Bug Impacts Flagship Nighthawk Router β
π Read
via "Threatpost".
Dozens of routers are patched by Netgear as it snuffs out critical, high and medium severity flaws.π Read
via "Threatpost".
Threat Post
Critical Netgear Bug Impacts Flagship Nighthawk Router
Dozens of routers are patched by Netgear as it snuffs out critical, high and medium severity flaws.
π New Lawsuit Alleges Theft of Bridge Security Trade Secrets π
π Read
via "Subscriber Blog RSS Feed ".
This armor safety company claims a former employee stole secrets via a USB drive and used them to net a multi-million dollar contractπ Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
New Lawsuit Alleges Theft of Bridge Security Trade Secrets
This armor safety company claims a former employee stole secrets via a USB drive and used them to net a multi-million dollar contract
π COVID-19: What business pros need to know π
π Read
via "Security on TechRepublic".
The coronavirus is spurring questions and concerns in the tech industry. Get tips about remote work, interviewing and hiring, travel, and cybersecurity, as well as the latest news.π Read
via "Security on TechRepublic".
TechRepublic
Coronavirus: What business pros need to know
The coronavirus is spurring questions and concerns in the tech industry. Get tips on telecommuting, interviewing and hiring, travel, and cybersecurity, as well as the latest news about COVID-19.
π How to scan your WordPress sites for vulnerabilities π
π Read
via "Security on TechRepublic".
How confident are you with the security of your WordPress deployments? If you're not 100% confident, you need to make use of the wpscan tool.π Read
via "Security on TechRepublic".
TechRepublic
How to scan your WordPress sites for vulnerabilities
How confident are you with the security of your WordPress deployments? If you're not 100% confident, you need to make use of the wpscan tool.
π΄ Most Cyberattacks in 2019 Were Waged Without Malware π΄
π Read
via "Dark Reading: ".
If the "malware-free" attack trajectory continues, it could mean major trouble for defenders, according to experts from CrowdStrike and other security companies.π Read
via "Dark Reading: ".
Dark Reading
Most Cyberattacks in 2019 Were Waged Without Malware
If the malware-free attack trajectory continues, it could mean major trouble for defenders, according to experts from CrowdStrike and other security companies.
π΄ Let's Encrypt Revokes Over 3 Million of Its Digital Certs π΄
π Read
via "Dark Reading: ".
Domain validation glitch prompts an abrupt decision.π Read
via "Dark Reading: ".
Dark Reading
Let's Encrypt Revokes Over 3 Million of Its Digital Certs
Domain validation glitch prompts an abrupt decision.
β Coronavirus warning spreads computer virus β
π Read
via "Naked Security".
There's an attachment that you are "strongly recommended to read" on account of coronavirus infections in your area. Don't open it!π Read
via "Naked Security".
Sophos News
Naked Security β Sophos News
β Zynga faces class action suit over massive Words With Friends hack β
π Read
via "Naked Security".
It's charging subpar password security and lousy user notification: Zynga has yet to notify users to warn them of the breach, the suit says.π Read
via "Naked Security".
Sophos News
Naked Security β Sophos News
β Letβs Encrypt Pushes Back Deadline to Revoke Some TLS Certificates β
π Read
via "Threatpost".
While 1.7 million of the certificates potentially affected by a CAA bug have already been replaced, around 1 million are still active.π Read
via "Threatpost".
Threat Post
Letβs Encrypt Pushes Back Deadline to Revoke Some TLS Certificates
While 1.7 million of the certificates potentially affected by a CAA bug have already been replaced, around 1 million are still active.
β Trump, Sanders Are the Top Brands for Cybercriminals β
π Read
via "Threatpost".
An analysis of spam subject lines and malicious domains shows that attackers have been betting on Trump and Sanders to snag public interest.π Read
via "Threatpost".
Threat Post
Trump, Sanders Are the Top Brands for Cybercriminals
An analysis of spam subject lines and malicious domains shows that attackers have been betting on Trump and Sanders to snag public interest.
β Google launches FuzzBench service to benchmark fuzzing tools β
π Read
via "Naked Security".
Google has announced FuzzBench, a free service βfor painlessly evaluating fuzzers in a reproducible way.βπ Read
via "Naked Security".
Naked Security
Google launches FuzzBench service to benchmark fuzzing tools
Google has announced FuzzBench, a free service βfor painlessly evaluating fuzzers in a reproducible way.β
β Ethical hackers swarm Pentagon websites β
π Read
via "Naked Security".
Hackers are crawling all over the US Department of Defense's websites - and DoD officials are quite happy about the whole thing.π Read
via "Naked Security".
Naked Security
Ethical hackers swarm Pentagon websites
Hackers are crawling all over the US Department of Defenseβs websites β and DoD officials are quite happy about the whole thing.
ATENTIONβΌ New - CVE-2019-10587
π Read
via "National Vulnerability Database".
Possible Stack overflow can occur when processing a large SDP body or non standard SDP body without right delimiters in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, Rennell, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2019-10586
π Read
via "National Vulnerability Database".
Filling media attribute tag names without validating the destination buffer size which can result in the buffer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, Rennell, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2019-10577
π Read
via "National Vulnerability Database".
Improper input validation while processing SIP URI received from the network will lead to buffer over-read and then to denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, Rennell, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2019-10569
π Read
via "National Vulnerability Database".
Stack buffer overflow due to instance id is misplaced inside definition of hardware accelerated effects in makefile in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile in APQ8053, APQ8098, MDM9607, MDM9640, MSM8998, QCS605, SC8180X, SDM439, SDM630, SDM636, SDM660, SDM845, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2019-10554
π Read
via "National Vulnerability Database".
Multiple Read overflows issue due to improper length check while decoding Identity Request in CSdomain/Authentication Reject in CS domain/ PRAU accept/while logging DL message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, Rennell, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2019-10553
π Read
via "National Vulnerability Database".
Multiple Read overflows due to improper length checks while decoding authentication in Cs domain/RAU Reject and TC cmd in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, Rennell, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2019-10552
π Read
via "National Vulnerability Database".
Multiple Buffer Over-read issue can happen due to improper length checks while decoding Service Reject/RAU Reject/PTMSI Realloc cmd in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, Rennell, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2019-10550
π Read
via "National Vulnerability Database".
Buffer Over-read when UE is trying to process the message received form the network without zero termination in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9206, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, Nicobar, QCM2150, QCS605, QM215, Rennell, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2019-10549
π Read
via "National Vulnerability Database".
Null pointer dereference issue can happen due to improper validation of CSEQ header response received from network in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, Nicobar, QCM2150, QM215, Rennell, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDX24, SDX55, SM6150, SM7150, SM8150π Read
via "National Vulnerability Database".