7 matches found
Fortinet Issues Fixes as FortiWeb Takeover Flaw Sees Active Attacks
Two FortiWeb vulnerabilities, including a critical unauthenticated bypass CVE-2025-64446, are under attack. Check logs for rogue admin accounts and upgrade immediately...
Accountable, Scalable and DoS-Resilient Secure Vehicular Communication
Paramount to vehicle safety, broadcasted Cooperative Awareness Messages CAMs and Decentralized Environmental Notification Messages DENMs are pseudonymously authenticated for security and privacy protection, with each node needing to have all incoming messages validated within an expiration...
Remote Code Execution
compositec1.core is vulnerable to remote code execution. Improper deserialization of untrusted user inputs in CompositeJsonSerializer.cs allows an authenticated attacker to upload and execute malicious code on the system under attack...
Remote Code Execution
drupal/core is vulnerable to remote code execution. A remote attacker is able to bypass protections provided in sanitizeName function because the filenames with .htaccess extension are not properly sanitized, which allows the attacker to upload and execute malicious code on the system under attac...
The Everyday Cyber Threat Landscape: Trends from 2019 to 2020
The past 12 months have been another bumper year for cybercrime affecting everyday users of digital technology. Trend Micro blocked more than 26.8 billion of these threats in the first half of 2019 alone. The bad news is that there are many more out there waiting to steal your personal data for...
Under Attack, Wikileaks Appeals for Help From Mirror Sites
Information leak Web site Wikileaks put out a call for volunteers willing to help the organization host its controversial documents. Claiming that the site was “under heavy attack,” Wikileaks posted an appeal on its Web site looking for individuals willing to help mirror the contents of Wikileaks...
Microsoft issues PowerPoint zero-day warning
Microsoft has issued an advisory to warn about an under-attack zero-day vulnerability affecting its PowerPoint software. According to the pre-patch advisory, the flaw allows remote code execution if a user opens a booby-trapped PowerPoint file. The company described the attacks as “limited and...