Mariana Trench, an Android-focused static analysis tool intended to discover and prevent security and privacy issues in apps built for the mobile operating system at scale, has been open-sourced by…
Tag: Vulnerability
Apple releases patches for zero-day vulnerability to block spyware
Apple users need to update their software immediately. Security experts discovered a flaw that allows highly intrusive spyware from Israel’s NSO Group to infect anyone’s iPhone, iPad, Apple Watch and…
Hackers expose credentials of 87,000 Fortinet FortiGate devices
A threat actor leaked the VPN login names and passwords for 87,000 Fortinet FortiGate SSL-VPN machines. Fortinet, a provider of network security solutions, confirmed that these credentials were retrieved…
Netgear releases patches for its smart switches
Netgear has released firmware patches to address high-severity vulnerabilities affecting more than a dozen of its smart switches used in business networks. Three security weaknesses in 20 Netgear…
BrakTooth Bluetooth bug is a threat to millions of devices
A newly discovered Bluetooth flaw puts millions of Windows 10 and Android devices at danger from hackers. According to security experts, 16 vulnerabilities have been uncovered and termed BrakTooth. These…
WhatsApp Photo Filter bug enables hackers to access your data
WhatsApp photo filter feature had a high-severity security vulnerability that could have been exploited by threat actors to send a malicious image to read sensitive data from the app’s memory,…
F5 BIG-IP bug affects customers in sensitive sectors
F5, a provider of BIG-IP application services, has patched several high-severity vulnerabilities in its networking device, one of which is a critical severity flaw. The vulnerabilities are part of…
Razer flaw allows threat actors to take over Windows PCs
Threat actors could gain Windows admin privileges by connecting in a Razer mouse or keyboard because of a zero-day vulnerability in Razer Synapse. Razer is a well-known computer accessory…
Millions of IoT devices are vulnerable due to Kalay cloud platform bug
A serious vulnerability in the Kalay cloud platform has been discovered, exposing millions of IoT devices to cyberattacks. The major vulnerability, named CVE-2021-28372, was identified by FireEye’s Mandiant researchers…
Liquid – Japan based crypto exchange lost over $90 million after hack
Liquid, a cryptocurrency exchange based in Japan, was hit by a cyber-attack in which its warm wallets were hacked and $94 million in assets were stolen. Deposits and withdrawals…