🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2017-18743

Certain NETGEAR devices are affected by authentication bypass. This affects R6300v2 before 1.0.4.8, R6400 before 1.0.1.20, R6700 before 1.0.1.20, R6900 before 1.0.1.20, R7000 before 1.0.7.10, R7100LG before V1.0.0.32, R7300DST before 1.0.0.52, R7900 before 1.0.1.16, R8000 before 1.0.3.36, R8300 before 1.0.2.94, R8500 before 1.0.2.94, WNDR3400v3 before 1.0.1.12, and WNR3500Lv2 before 1.2.0.40.

📖 Read

via "National Vulnerability Database".

76 views20:07

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2017-18742

Certain NETGEAR devices are affected by CSRF. This affects JR6150 before 1.0.1.10, R6050 before 1.0.1.10, R6250 before 1.0.4.12, R6300v2 before 1.0.4.8, R6700 before 1.0.1.16, R6900 before 1.0.1.16, R7300DST before 1.0.0.54, R7900 before 1.0.1.12, R8000 before 1.0.3.32, and R8500 before 1.0.2.74.

📖 Read

via "National Vulnerability Database".

70 views20:07

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2017-18741

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects R6250 before 1.0.4.8, R6300v2 before 1.0.4.8, R6700 before 1.0.1.20, R7000 before 1.0.7.10, R7000P before 1.0.0.58, R6900P before 1.0.0.58, R7100LG before 1.0.0.32, R7900 before 1.0.1.14, R8000 before 1.0.3.22, and R8500 before 1.0.2.94.

📖 Read

via "National Vulnerability Database".

70 views20:07

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2017-18740

Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects D3600 before 1.0.0.61, D6000 before 1.0.0.61, D6100 before 1.0.0.55, D7800 before 1.0.1.28, R6100 before 1.0.1.16, R7500 before 1.0.0.112, R7500v2 before 1.0.3.20, R7800 before 1.0.2.36, R9000 before 1.0.2.40, WNDR3700v4 before 1.0.2.88, WNDR4300 before 1.0.2.90, WNDR4300v2 before 1.0.0.48, WNDR4500v3 before 1.0.0.48, and WNR2000v5 before 1.0.0.58.

📖 Read

via "National Vulnerability Database".

70 views20:07

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2017-18739

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects R6220 before V1.1.0.50, R7800 before V1.0.2.36, WNDR3400v3 before 1.0.1.14, and WNDR3700v5 before V1.1.0.48.

📖 Read

via "National Vulnerability Database".

68 views20:07

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2017-18738

Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects EX6150v2 before 1.0.1.54, R6400 before 1.0.1.24, R6400v2 before 1.0.2.32, R6700 before 1.0.1.22, R6900 before 1.0.1.22, R7000 before 1.0.9.10, R7000P before 1.2.0.22, R6900P before 1.2.0.22, R7100LG before 1.0.0.32, R7300DST before 1.0.0.54, R7900 before 1.0.1.18, R8000 before 1.0.3.48, R8300 before 1.0.2.106, R8500 before 1.0.2.106, R6100 before 1.0.1.16, WNDR4300v2 before 1.0.0.48, WNDR4500v3 before 1.0.0.48, and WNR2000v5 before 1.0.0.58.

📖 Read

via "National Vulnerability Database".

69 views20:07

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2017-18737

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.10, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.18, R6050 before 1.0.1.10, R6220 before 1.1.0.50, R6700v2 before 1.2.0.4, R6800 before 1.2.0.4, R6900v2 before 1.2.0.4, WNDR3700v5 before 1.1.0.48, WNR1000v4 before 1.1.0.44, WNR2020 before 1.1.0.44, and WNR2050 before 1.1.0.44.

📖 Read

via "National Vulnerability Database".

71 views20:07

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2017-18736

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects JR6150 before 1.0.1.10, R6050 before 1.0.1.10, R6220 before 1.1.0.50, R6700v2 before 1.2.0.4, R6800 before 1.2.0.4, R6900v2 before 1.2.0.4, and WNDR3700v5 before 1.1.0.48.

📖 Read

via "National Vulnerability Database".

71 views20:07

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2017-18735

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects JR6150 before 1.0.1.10, PR2000 before 1.0.0.18, R6050 before 1.0.1.10, R6700v2 before 1.2.0.4, R6800 before 1.2.0.4, and R6900v2 before 1.2.0.4.

📖 Read

via "National Vulnerability Database".

71 views20:07

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2017-18734

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects JNR1010v2 before 1.1.0.44, JR6150 before 1.0.1.10, JWNR2010v5 before 1.1.0.44, PR2000 before 1.0.0.18, R6050 before 1.0.1.10, R6220 before 1.1.0.50, R6700v2 before 1.2.0.4, R6800 before 1.2.0.4, R6900v2 before 1.2.0.4, WNDR3700v5 before 1.1.0.48, WNR1000v4 before 1.1.0.44, WNR2020 before 1.1.0.44, and WNR2050 before 1.1.0.44.

📖 Read

via "National Vulnerability Database".

75 views20:07

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2017-18733

Certain NETGEAR devices are affected by authentication bypass. This affects D6220 before 1.0.0.28, D6400 before 1.0.0.60, D8500 before 1.0.3.29, R6250 before 1.0.4.8, R6400 before 1.0.1.22, R6400v2 before 1.0.2.32, R7100LG before 1.0.0.32, R7300DST before 1.0.0.52, R8300 before 1.0.2.94, and R8500 before 1.0.2.100.

📖 Read

via "National Vulnerability Database".

84 views20:07

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2017-18732

Certain NETGEAR devices are affected by authentication bypass. This affects R6300v2 before 1.0.4.8, PLW1000v2 before 1.0.0.14, and PLW1010v2 before 1.0.0.14.

📖 Read

via "National Vulnerability Database".

98 views20:07

🛡 Cybersecurity & Privacy 🛡 - News

🕴 How the Dark Web Fuels Insider Threats 🕴

New decentralized, criminal marketplaces and "as-a-service" offerings make it easy for employees to monetize their knowledge and access to enterprise networks and systems.

📖 Read

via "Dark Reading: ".

Darkreading

How the Dark Web Fuels Insider Threats

New decentralized, criminal marketplaces and "as-a-service" offerings make it easy for employees to monetize their knowledge and access to enterprise networks and systems.

117 views20:28

🛡 Cybersecurity & Privacy 🛡 - News

🕴 5 Ways to Prove Security's Worth in the Age of COVID-19 🕴

Tightened budgets are placing jobs at risk, but security pros say they're armed with ways to demonstrate that what they're doing merits keeping them employed.

📖 Read

via "Dark Reading: ".

Dark Reading

5 Ways to Prove Security's Worth in the Age of COVID-19

Tightened budgets are placing jobs at risk, but security pros say they're armed with ways to demonstrate that what they're doing merits keeping them employed.

134 views20:58

🛡 Cybersecurity & Privacy 🛡 - News

🕴 Why Consumers, SMBs Are Likely to Fall for Coronavirus Scams 🕴

📖 Read

via "Dark Reading: ".

Dark Reading

Why Consumers, SMBs Are Likely to Fall for Coronavirus Scams

Data reveals both a lack of skepticism and a willingness to engage with emails crafted to seem like government communications.

170 views22:28

🛡 Cybersecurity & Privacy 🛡 - News

🕴 Paay Misconfiguration Leaves Transaction Data Exposed 🕴

The New York-based credit-card processor left a server without password protection for approximately three weeks.

📖 Read

via "Dark Reading: ".

Dark Reading

Paay Misconfiguration Leaves Transaction Data Exposed

The New York-based credit-card processor left a server without password protection for approximately three weeks.

176 views22:28

🛡 Cybersecurity & Privacy 🛡 - News

⚠ AI helps experts find thousands of child sexual abuse imagery keywords ⚠

For years, abusers have used complex keywords to covertly talk about imagery, but analysts have sussed out much of the secret code.

📖 Read

via "Naked Security".

Naked Security

AI helps experts find thousands of child sexual abuse imagery keywords

For years, abusers have used complex keywords to covertly talk about imagery, but analysts have sussed out much of the secret code.

161 views10:07

🛡 Cybersecurity & Privacy 🛡 - News

🔐 "Reopen" domain name owners include a gun activist, a Good Samaritan, and potential spammers 🔐

DomainTools security analyst looked at 130 registrations that cover everything from reopenohio to reopendaycares.

📖 Read

via "Security on TechRepublic".

TechRepublic

"Reopen" domain name owners include a gun activist, a Good Samaritan, and potential spammers

DomainTools security analyst looked at 130 registrations that cover everything from reopenohio to reopendaycares.

162 views10:25

🛡 Cybersecurity & Privacy 🛡 - News

⚠ Shadow Broker leaked NSA files point to unknown APT group ⚠

A security researcher claims to have unearthed a previously-unknown APT group after reading the NSA files leaked by the Shadow Brokers in 2016.

📖 Read

via "Naked Security".

Sophos News

Naked Security – Sophos News

154 views11:07

🛡 Cybersecurity & Privacy 🛡 - News

⚠ Patch now! Microsoft issues unexpected Office fix ⚠

You might not have heard of FBX files... but the latest Office versions support them, so don't neglect this patch!

📖 Read

via "Naked Security".

Sophos News

Naked Security – Sophos News

150 views12:07

🛡 Cybersecurity & Privacy 🛡 - News

❌ Apple Pushes Back Against Zero-Day Exploit Claims ❌

Company said there is no evidence that iOS bugs revealed by ZecOps earlier this week were ever used against customers.

📖 Read

via "Threatpost".

Threat Post

Apple Pushes Back Against Zero-Day Exploit Claims

Company said there is no evidence that iOS bugs revealed by ZecOps earlier this week were ever used against customers.

140 views12:23

About

Blog

Apps

Platform