vulnerability

Ancient, critical "RediShell" bug menaces thousands of servers

Ancient, critical "RediShell" bug menaces thousands of servers

All software releases are impacted.
Juha Saarinen Oct 9 2025 4:52PM Security
Melbourne dev finds gift card PINs can be brute-forced

Melbourne dev finds gift card PINs can be brute-forced

Cards sold at supermarkets open to redemption robbery.
Juha Saarinen Sep 3 2025 6:30AM Security
Zero-click Apple and WhatsApp bug combo used to drop gov spyware

Zero-click Apple and WhatsApp bug combo used to drop gov spyware

Meta comms app vulnerability could affect Android users as well.
Juha Saarinen Aug 30 2025 8:38AM Security
AI coding threatens to make common security flaw more prevalent

AI coding threatens to make common security flaw more prevalent

IDORs and broken access controls at scale.
Juha Saarinen Aug 5 2025 12:55PM Security
Microsoft issues patches for "ToolShell" vulnerable SharePoint Servers

Microsoft issues patches for "ToolShell" vulnerable SharePoint Servers

For versions 2019 and subscription only.
Juha Saarinen Jul 22 2025 12:51PM Security
Microsoft patches Azure API service against three vulnerabilities

Microsoft patches Azure API service against three vulnerabilities

Researchers found request forgery, file upload bugs.
Richard Chirgwin May 8 2023 11:21AM Security
Wi-Fi protocol vulnerability allows traffic decryption

Wi-Fi protocol vulnerability allows traffic decryption

Proof-of-concept published.
Richard Chirgwin Mar 28 2023 12:37PM Security
Cisco Catalyst 9300 supply chain vulnerability patched

Cisco Catalyst 9300 supply chain vulnerability patched

Attacker with physical access could install "persistent code".
Richard Chirgwin Mar 23 2023 12:19PM Security
Arista patches CloudVision vulnerability

Arista patches CloudVision vulnerability

Critical access control bug.
Richard Chirgwin Mar 8 2023 12:47PM Security
Cisco ships critical fix for IP phones

Cisco ships critical fix for IP phones

Remote code execution in management interface.
Richard Chirgwin Mar 2 2023 12:25PM Security
Intel patches dozens of bugs

Intel patches dozens of bugs

Baseboard management controller has authentication bypass.
Richard Chirgwin Feb 16 2023 12:41PM Security
Hackers targeting unpatched VMware ESXi servers

Hackers targeting unpatched VMware ESXi servers

In worldwide campaign.
Staff Writer Feb 6 2023 12:10PM Security
Atlassian patches Jira authentication vulnerability

Atlassian patches Jira authentication vulnerability

Attackers can impersonate legitimate users.
Richard Chirgwin Feb 6 2023 11:38AM Security
GitLab pushes patches for critical bugs

GitLab pushes patches for critical bugs

Integer overflows in popular version control software.
Richard Chirgwin Jan 20 2023 12:55PM Security
Oracle issues more than 300 security fixes

Oracle issues more than 300 security fixes

More than 70 critical vulnerabilities patched.
Richard Chirgwin Jan 19 2023 11:30AM Security
AWS had a dangerous undocumented API

AWS had a dangerous undocumented API

Undetectable reconnaissance.
Richard Chirgwin Jan 18 2023 11:52AM Security
Juniper caught by third-party bugs dating back to 2016

Juniper caught by third-party bugs dating back to 2016

Three critical advisories in first release of 2023.
Richard Chirgwin Jan 13 2023 12:07PM Security
Microsoft sends security admins their first gift for 2023

Microsoft sends security admins their first gift for 2023

First Patch Tuesday of 2023 covers 98 vulnerabilities.
Richard Chirgwin Jan 11 2023 11:48AM Security
Gatekeeper bypass exposes Macs to malware

Gatekeeper bypass exposes Macs to malware

Microsoft researcher discovered access control list bug.
Richard Chirgwin Dec 21 2022 11:15AM Security
New Fortinet bug under active exploitation

New Fortinet bug under active exploitation

Overflow may allow remote code execution.
Richard Chirgwin Dec 13 2022 8:52AM Security

Log In

  |  Forgot your password?