Microsoft last week confirmed in an advisory on a Microsoft Security Response Center post a report by SOCradar of a misconfigured Microsoft endpoint that was not in current use possibly exposing over 65,000 organizations’ data.…

Continue Reading

WordPress 6.0.3, the latest security release, is out and now available to all WordPress websites. If your site supports automatic updates, it will be automatically updated. You can also manually update within your dashboard =>…

Continue Reading

Fortinet has released a patch an advisory on a recent critical authentication bypass vulnerabilities affecting FortiOS, FortiProxy, and FortiSwitchManager. The authentication bypass bug, CVE-2022-40684, allows an unauthenticated user to perform administrative functions through maliciously crafted…

Continue Reading

Google has recently reported that their Cloud Armor service blocked the largest DDoS attack ever recorded. A DDoS, or distributed denial-of-service is a malicious attack where excessive amounts of requests are sent to a target.…

Continue Reading

Apple has released updates patching two critical vulnerabilities recently discovered. An application is able to use this vulnerability to run malicious code and gain Kernel privilege, which is the highest privilege allowing full control of…

Continue Reading

VMware has released patches for bugs and vulnerabilities, including a critical authentication bypass bug. This bug allowed a user to gain administrator privileges without authentication. Products affected include VMware Workspace ONE, VMware Identity Manager, vRealize…

Continue Reading

Mangatoon, the manga and comic reading platform, has suffered a data breach exposing the data of over 20 million accounts. The hacker was able to steal this data by accessing an unsecured or misconfigured database.…

Continue Reading