Category: SecurityWeek

CritIX vulnerabilities in Honeywell DCS
13
Jul
2023

Honeywell DCS Platform Vulnerabilities Can Facilitate Attacks on Industrial Organizations

Cybersecurity company Armis has identified several vulnerabilities in Honeywell distributed control system (DCS) products that could be exploited in attacks…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
13
Jul
2023

Cisco Shopping Spree Adds Oort ID Threat Detection Tech

Cisco’s cybersecurity shopping spree hit another gear Thursday with the planned acquisition of Oort, an early-stage startup selling software in…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
13
Jul
2023

BlackLotus UEFI Bootkit Source Code Leaked on GitHub

The source code for the BlackLotus UEFI bootkit has been shared publicly on GitHub, albeit with several modifications compared to…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
13
Jul
2023

Popular WordPress Security Plugin Caught Logging Plaintext Passwords

The All-In-One Security (AIOS) WordPress plugin was found to be logging plaintext passwords from login attempts. Installed on more than…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
13
Jul
2023

3 Tax Prep Firms Shared ‘Extraordinarily Sensitive’ Data About Taxpayers With Meta, Lawmakers Say

Three large tax preparation firms sent “extraordinarily sensitive” information on tens of millions of taxpayers to Facebook parent company Meta…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
13
Jul
2023

Juniper Networks Patches High-Severity Vulnerabilities in Junos OS

Networking appliances maker Juniper Networks on Wednesday announced software updates that patch multiple high-severity vulnerabilities in Junos OS, Junos OS…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
13
Jul
2023

Apple Re-Releases Urgent Zero-Day Patches With Fix for Website Access Issue

Apple has re-released its latest Rapid Security Response updates for iOS and macOS after fixing a website access issue caused…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
13
Jul
2023

SonicWall Patches Critical Vulnerabilities in GMS, Analytics Products

SonicWall on Wednesday announced patches for 15 vulnerabilities in its Global Management System (GMS) and Analytics products, including four critical-severity…

Rockwell Automation exploit created by APT
13
Jul
2023

APT Exploit Targeting Rockwell Automation Flaws Could Threaten Critical Infrastructure

An unnamed advanced persistent threat (APT) group has set its sights on two Rockwell Automation product vulnerabilities that they could…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
12
Jul
2023

Orca Sues Wiz Over Alleged Cloud Security Patent Violations

The simmering rivalry between Israeli cloud security unicorns Orca and Wiz erupted in the open Wednesday with Orca filing a…

Patch Tuesday: Critical Flaws in Adobe Commerce Software
12
Jul
2023

Hardcoded Accounts Allow Full Takeover of Technicolor Routers

Multiple hardcoded credentials found on the Technicolor TG670 DSL gateway router allow attackers to completely take over devices, the CERT…

2023 Inside the Mind of a Hacker Report
12
Jul
2023

Inside the Mind of the Hacker: Report Shows Speed and Efficiency of Hackers in Adopting New Technologies

The application of artificial intelligence is still in its infancy, but we are already seeing one major effect: the democratization…