Lucene search
K

8 matches found

The Hacker News
The Hacker News
added 2025/02/03 1:57 p.m.27 views

768 CVEs Exploited in 2024, Reflecting a 20% Increase from 639 in 2023

As many as 768 vulnerabilities with designated CVE identifiers were reported as exploited in the wild in 2024, up from 639 CVEs in 2023, registering a 20% increase year-over-year. Describing 2024 as "another banner year for threat actors targeting the exploitation of vulnerabilities," VulnCheck...

10CVSS7.4AI score0.99999EPSS
Exploits351
The Hacker News
The Hacker News
added 2024/08/12 10:30 a.m.23 views

Researchers Uncover Vulnerabilities in Solarman and Deye Solar Systems

Cybersecurity researchers have identified a number of security shortcomings in photovoltaic system management platforms operated by Chinese companies Solarman and Deye that could enable malicious actors to cause disruption and power blackouts. "If exploited, these vulnerabilities could allow an...

7.8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/10/28 7:20 a.m.56 views

Researchers Uncover Wiretapping of XMPP-Based Instant Messaging Service

New findings have shed light on what's said to be a lawful attempt to covertly intercept traffic originating from jabber.ru aka xmpp.ru, an XMPP-based instant messaging service, via servers hosted on Hetzner and Linode a subsidiary of Akamai in Germany. "The attacker has issued several new TLS...

5.5CVSS7.3AI score0.00717EPSS
Exploits1
The Hacker News
The Hacker News
added 2021/02/16 1:2 p.m.43 views

Unpatched ShareIT Android App Flaw Could Let Hackers Inject Malware

Multiple unpatched vulnerabilities have been discovered in SHAREit, a popular app with over one billion downloads, that could be abused to leak a user's sensitive data, execute arbitrary code, and possibly lead to remote code execution. The findings come from cybersecurity firm Trend Micro's...

0.4AI score
Exploits0
ThreatPost
ThreatPost
added 2017/06/30 7:0 a.m.15 views

This Retail Website Considers Password Security Optional

Most gaping security holes are terrible mistakes. But for one major Hong Kong-based online retailer called Strawberrynet, its security shortcomings are a feature. Like many ecommerce sites, registered users have an option for express checkout. What makes beauty-products website Strawberrynet uniq...

6.8AI score
Exploits0References2
ThreatPost
ThreatPost
added 2014/07/30 2:50 p.m.4 views

Black Hat 2014: Multipath TCP Introduces Security Blind Spot

If multipath TCP is the next big thing to bring resilience and efficiency to networking, then there are some serious security issues to address before it goes mainstream. MPTCP is an extension to the Internet’s primary communication protocol. It allows a TCP session to move over multiple...

7AI score
Exploits0References1
ThreatPost
ThreatPost
added 2011/04/05 9:13 p.m.21 views

Study: Three Of Four Energy Firms Had Data Breach In Last Year

Three quarters of global energy corporations have suffered one or more data breaches in the last 12 months, according to a new survey by The Ponemon Institute, which finds evidence of widespread shortcomings in the energy and utilities vertical. The report, “The State of IT Security: Study of...

7.2AI score
Exploits0References5
ThreatPost
ThreatPost
added 2010/12/30 10:6 p.m.11 views

'SMS of Death' Attacks Can Crash the Simplest of Phones

Malicious text messages can crash many types of mobile phones, including devices by Samsung, Sony Ericsson, Motorola and LG, according to a presentation given at the Chaos Communication Congress hacking conference this week in Berlin. Nicknamed ‘SMS of Death,’ the attacks were outlined by Collin...

7.7AI score
Exploits0References3
Rows per page
Query Builder