Be the first to know the latest tech updates
[mc4wp_form id=195]
Defender for IoT, Microsoft’s IoT-oriented antivirus program, is getting a new feature to cut down on firmware attacks. Called Firmware Analysis, the feature does exactly what the name suggests – analyses firmware in embedded Linux devices for vulnerabilities and known weaknesses. The tool, which is currently in Public Preview, can scan the firmware for devices […]
Some AMD chips are vulnerable to a high-severity security flaw that allows threat actors to steal sensitive data from the endpoint, including passwords and encryption keys. The manufacturer has since released a patch for the vulnerability and urged its users to apply it quickly and minimize the chances of being targeted. The flaw was discovered […]
WordPress users who have installed the WooCommerce Stripe Gateway Plugin are being urged to update to at least version 7.4.1 following the news of a major vulnerability potentially exposing users’ PII data. The vulnerability, assigned CVE-2023-34000, relates to the free version of the WooCommerce Stripe Gateway plugin, specifically versions 7.4.0 and below. The popular ecommerce […]
Experts have uncovered a method for hackers to steal data from people’s Google Drive accounts without leaving any trace of the files they got away with. Cybersecurity researchers from Mitiga Security have published findings claiming the problem lies in the fact that for users without a paid license for Google Workspace, nothing is logged and […]
Hackers are reportedly using an Unauthenticated Stored Cross-Site Scripting (XSS) flaw in a WordPress plugin to target thousands of websites, experts have warned. Cybersecurity researchers from Defiant discovered the flaw in Beautiful Cookie Consent Banner, a WP cookie consent plugin with more than 40,000 active installations. The attackers could use the vulnerability to add malicious […]
A half-a-decade old vulnerability in certain digital video recording (DVR) devices has suddenly become interesting for threat actors to exploit again after the number of observed attacks surges, researchers have warned. Cybersecurity researchers from Fortinet’s FortiGuard Labs have spotted an uptick in attacks targeting TBK DVRs using a publicly available proof-of-concept to exploit a vulnerability […]
More information has been revealed about how criminals are using the recently-discovered PaperCut security flaws, which looked to use humble office printers to gain entrance to corporate networks. According to a new report on BleepingComputer, cybercriminals are using two flaws in the popular print (opens in new tab) management software to deliver the Atera remote […]
The IEEE 802.11 Wi-Fi protocol standard carries a security flaw that could allow threat actors to steal sensitive data and inject malicious content, researchers are saying. Wi-Fi routers (opens in new tab) share between them network frames – data containers that include things like the MAC address of the source and destination endpoints, or control […]
Microsoft has published a Powershell script to help IT teams fix a BitLocker bypass security flaw found in the Windows Recovery Environment (WinRE), simplifying the process of securing WinRE images. Per BleepingComputer (opens in new tab), the flaw, tracked as CVE-2022-41099, allows threat actors to bypass the BitLocker Device Encryption feature, and gain access to […]
Cybersecurity researchers from Quarkslab have discovered two vulnerabilities in the Trusted Platform Module (TPM) 2.0, which could spell major trouble for “billions” of devices. TPM 2.0 is a chip that PC manufacturers have been adding to the motherboards since mid-2016. The technology, as Microsoft explains, is designed to provide “security-related functions”. The chip helps generate, […]
Your go-to destination for the latest in tech, AI breakthroughs, industry trends, and expert insights.
Digitally Interactive Copyright 2022-25 All Rights Reserved.
