Critical Cisco SD-WAN Bugs Allow RCE Attacks
Cisco is stoppering critical holes in its SD-WAN solutions and its smart software manager satellite.
Want to know more about this topic or about us? Contact us!
Cisco is stoppering critical holes in its SD-WAN solutions and its smart software manager satellite.
The company also issued patches for Tesla-based GPUs as part of an updated, separate security advisory. NVIDIA has newly disclosed three security vulnerabilities in the NVIDIA Shield TV, which could allow denial of service, escalation of privileges and data loss. The NVIDIA Shield TV is a set-top gadget that acts . . . Read more
The attack vector was not the Orion platform but rather an email-protection application for Microsoft 365.
Mystery of spying using popular chat apps uncovered by Google Project Zero researcher. Google Project Zero researcher Natalie Silvanovich outlined what she believes is a common theme when it comes to serious vulnerabilities impacting leading chat platforms. The research, published Tuesday, identifies a common denominator within chat platforms, called “calling . . . Read more
Seven flaws in open-source software Dnsmasq could allow DNS cache poisoning attacks and remote code execution. Researchers have uncovered a set of flaws in dnsmasq, popular open-source software used for caching Domain Name System (DNS) responses for home and commercial routers and servers. The set of seven flaws are comprised . . . Read more
Starting Feb. 9, Microsoft will enable Domain Controller “enforcement mode” by default to address CVE-2020-1472. Microsoft is taking matters into its own hands when it comes to companies that haven’t yet updated their systems to address the critical Zerologon flaw. The tech giant will soon by default block vulnerable connections . . . Read more
Expert panel awards dubious honors to 2021 Consumer Electronics Show’s biggest flops, including security and privacy failures. This year’s Consumer Electronics Show was hampered by the pandemic, but that didn’t stop an expert panel from convening to award this year’s dubious CES 2021 Worst in Show honors. Overall trends from . . . Read more
Security researchers lambasted the controversial macOS Big Sur feature for exposing users’ sensitive data. Apple has removed a contentious macOS feature that allowed some Apple apps to bypass content filters, VPNs and third-party firewalls. The feature, first uncovered in November in a beta release of the macOS Big Sur feature, was . . . Read more
CISA has issued an alert warning that cloud services at U.S. organizations are being actively and successfully targeted. The Feds are warning that cybercriminals are bypassing multi-factor authentication (MFA) and successfully attacking cloud services at various U.S. organizations. According to an alert issued Wednesday by the Cybersecurity and Infrastructure Security . . . Read more
The optional feature was released free to users in a technical preview this week, adding a new layer of security to service, which has been plagued by privacy concerns.