A pen-tester has found five vulnerabilities in Dell EMC RecoverPoint devices, including a critical RCE that could allow total system compromise. Go to Source

A bug in Comcast’s activation website for its Xfinity routers leaked sensitive customer data. Go to Source

A botnet called Brain Food is pushing diet pills via infected WordPress and Joomla websites. Go to Source

Records for a mobile app that parents can use to monitor what their kids are doing online has been exposed in the latest Amazon Web Services cloud misconfiguration. Go to Source

Analysis shows that the malware, previously a banking trojan focused on Android devices, has rapidly evolved just in the past month. Go to Source

Intel on Monday acknowledged that its processors are vulnerable to another Spectre-like speculative execution side channel flaw that could allow attackers to access information. Go to Source

The code is integrated with at least three exploits that target unpatched IoT devices, including closed-circuit cameras and Netgear routers. Go to Source

The Sun Team APT, likely linked to North Korea, uses Google Play and Facebook as attack vectors. Go to Source

The U.S. Senate gave the nod to restoring the 2015 Open Internet Order, putting net neutrality on the fast track to a House vote. Go to Source

A type of card-not-present fraud is spreading throughout the Latin American underground, uniting groups of malefactors in a communal effort to perpetrate it as widely as possible. Go to Source