7 Critical vulnerabilities in SolarWinds Platform
This week, SolarWinds released three warnings that detailed high-severity vulnerabilities that are anticipated to be corrected with an upgrade to the SolarWinds Platform before the…
Category: ExploitOne
Critical flaws allows to escalate privileges or break Argo CD functionality
Argo CD is a well-known open-source GitOps continuous delivery solution for Kubernetes. It is used to monitor operating applications and compares their real state, which…
This OpenSSL vulnerability allows to read memory contents or launch DoS attack
On Tuesday, the OpenSSL Project released a significant security update in order to address at least eight identified security weaknesses. These flaws leave OpenSSL users…
This exploit code allows to hack into Linux servers(5.5 up to 6.2) easily
The Linux kernel has a framework known as netfilter that enables a variety of networking-related actions to be performed in the form of individualized handlers.…
Story of “A Most Dangerous Employee Any Company Can Have”
Ubiquiti Networks, a technological company that had its headquarters in New York, that produced and marketed equipment related to wireless communications, and that had shares…
Downloading SANS Course or passing a CISSP, CompTIA, ISC2 certification. How hackers are making it easy for cheaters?
Certification in cybersecurity is often required for employment in the cybersecurity sector, and common examples of such certifications include those offered by CompTIA, ISC2, Cisco,…
New phishing tactic exploits DocuSign documents
Imagine that you get an email from DocuSign, which is a reputable and well-known electronic signature platform. If you clicked on the link in the…
Exploit code allows attackers to read all KeePass saved passwords
KeePass is a widely used open-source password manager that enables you to manage your passwords by using a database that is maintained locally, as opposed…
Hackers can now take over remotely Western Digital NAS storages. Critical flaws
My Cloud from Western Digital is one of the most popular network-attached storage (NAS) devices that are being used by businesses and individuals to host…
Ex Yandex employee leaks source code of different Yandex services
A Yandex source code repository that was apparently taken by an ex-worker of the Russian IT giant has been published on a prominent cybercrime forum.…
Mexican tax agency SAT hack. Myth or Real?
On Tuesday, January 24, many news organizations claimed that the SAT site had been hacked. In response to these reports, the agency has already issued…
Yahoo has become the most impersonated brand in phishing attacks leaving behind DHL
During the fourth quarter of 2022, Yahoo was the target of twenty percent of all brand phishing attempts. Investigators discovered tactics that involved sending harmful…