Category: Cybersecurity News
-
Apple Releases Updates for Zero-Days Affecting iOS, Mac, Vision Pro
Update your iOS, Mac and Vision devices as Apple has released updates to a critical vulnerability affecting different systems and software. They’re tracked as CVE-2024-44308, which presented a flaw in the JavaScriptCore, a framework for Javascript commonly used on websites, and CVE-2024-44309, which was a flaw in WebKit, the open-source web rendering engine that powers…
-
Vulnerability in WordPress Really Simple Security Plugin Puts Websites at Risk
A several vulnerability has been discovered in a popular WordPress plugin used by millions of websites. Discovered by Wordfence researchers and dubbed CVE-2024-10924, the critical vulnerability affects the Really Simple Security (also known as Really Simple SSL) plugin. Plugin versions affected are 9.0.0 and 9.1.1.1 and could impact millions of websites using this plugin. The…
-
Cisco Confirms Investigation Into Possible DevHub Breach Leaks
Recent data leaks online by hackers have caused concern for Cisco. The hackers early last week on October 14 announced a Cisco breach on a popular hacking forum. The data was from their DevHub resource center site, and claimed to obtain sensitive files like source code, confidential docs, keys, and other types of info, including…
-
VMware Releases Update for Critical vCenter Server Vulnerabilities
VMware has released software updates for a vCenter Server vulnerability that could allow remote code execution from malicious packets. The vulnerabilities, (CVE-2024-38812, CVE-2024-38813), were considered critical with high CVSS scores. Versions affected that require an update are: Find update information and downloads on their security advisory notification.
-
Internet Archive, One of the Largest Digital Libraries, Suffers Data Breach Exposing 30M+ Users
Internet Archive, one of the largest online libraries of digital content and creator of the Wayback Machine which has collections of billions of websites over the years, has confirmed a recent data breach that exposed the data of millions of users. This occurs as they’ve been rebuilding their website amongst recent DDos (Distributed Denial of…
-
Two Critical Ubuntu Linux Vulnerabilities Within OverlayFS Discovered
Wiz, a cloud security provider, has discovered two vulnerabilities that allow privilege escalation on Ubuntu, a Linux distribution variant. These vulnerabilities can impact users from Ubuntu versions 18.04 LTS (Bionic Beaver) to the most recent versions. This includes 22.10 (Kinetic Kudu) and 23.04 (Lunar Lobster). The vulnerabilities were found in OverlayFS, a modern file system…
-
LastPass, A Widely-Used Password Manager, Suffers Data Breach
LastPass, a widely-used and recognized password manager from LogMeIn, recently made an announcement of a recent security breach. On their official blog, they acknowledged unusual activity within a third-party cloud storage service and stated steps they are currently taking. According to their blog post, a breacher was able to gain unauthorized access using information from…
Categories:
Have any comments or suggestions? Feel free to let us know!
