Major Container Security Flaw Threatens Cascading Attacks
A fundamental component of container technologies like Docker, cri-o, containerd and Kubernetes contains an important vulnerability that could cause cascading attacks. Go to Source
Lenovo Watch X Riddled with Security Vulnerabilities
Researchers have identified multiple security issues with this Lenovo smartwatch. Go to Source
ThreatList: Banking Trojans Are Still The Top Big Bad for Email
Banking trojans, led by the ever-changing Emotet, dominated the email-borne threat landscape in Q4, according to Proofpoint. Go to Source
‘Dirty Sock’ Flaw in snapd Allows Root Access to Linux Servers
The issue affects default installations of Ubuntu Server and Desktop and is likely included in many Ubuntu-like Linux distributions. Go to Source
Unpatched Apple macOS Hole Exposes Safari Browsing History
There are no permission dialogues for apps in certain folders for macOS Mojave, which allows a malicious app to spy on browsing histories.. Go to Source
Siemens Warns of Critical Remote-Code Execution ICS Flaw
The affected SICAM 230 process control system is used as an integrated energy system for utility companies, and as a monitoring system for smart-grid applications. Go to Source
Double-Stuffed: Dunkin’ Hit by Another Credential-Stuffing Attack
Dunkin’ Donuts’ loyalty program was hit with a credential stuffing attack that targeted names, email addresses, 16-digit DD Perks account numbers and DD Perks QR codes. Go to Source
Microsoft Patches Zero-Day Browser Bug Under Active Attack
In its February Patch Tuesday bulletin Microsoft patches four public bugs and one that under active attack. Go to Source
Critical WordPress Plugin Flaw Allows Complete Website Takeover
Users of the popular plugin, Simple Social Buttons, are encouraged to update to version 2.0.22. Go to Source
Attackers Completely Destroy VFEmail’s Secure Mail Infrastructure
“Every file server is lost, every backup server is lost.” Go to Source