News

Linux Vulnerabilities of the Week: February 14, 2022 1. Integer overflow in function XML_GetBuffer in Expat (<2.4.4) affecting Red Hat Enterprise Linux 7 and 8 Severity: Critical         CVSS Score: 9.8 Expat (libexpat) is susceptible to a software flaw that causes...

Linux Vulnerabilities of the Week: February 8, 2022 1. SQL injection in Log4j 1.x when the application is configured to use JDBCAppender Severity: Critical         CVSS Score: 9.8 This is a flaw in the Java logging library Apache Log4j in version...

Critical Bug Can Be Exploited to Gain Windows SYSTEM Privileges New Critical Vulnerability McAfee has patched two high-severity vulnerabilities in a component of its McAfee Enterprise product that attackers can use to escalate privileges, including up to SYSTEM. According to...

January Patch Tuesday 2022 Fixes 96 Critical Issues Microsoft Patch Tuesday Released with 96 Fixes There are 8 Critical (one more than last month) and 88 Important fixes in this release. Updates were included for Microsoft Windows and Windows Components, Microsoft...

Linux Vulnerabilities of the Week: January 10, 2022 1. Mozilla iframe sandbox rules vulnerability Severity: Critical         CVSS Score: 10.0 Due to incorrect application of iframe sandbox rules to XSLT stylesheets, an iframe can bypass restrictions such as executing scripts or...

Cloud-Based IT Security Will Dominate in 2022 Cloud-Security Looking to Grow in 2022 The cloud has been gathering momentum for many years. And it is rapidly becoming an unstoppable force. According to the 2022 Technology Spending Intentions report by Enterprise...

Why Hackers are Living the American Dream A New American Dream for Hackers The American Dream has long been the ideal whereby anyone living in the country would enjoy equality of opportunity. Hard work would pay off in terms of...

Are You Taking the Right Precautions Against the Log4j Flaw? Some breaches are more serious than others. And the Log4j Java logging library attack is a doozy! Publicly disclosed in early December, the number of attacks taking advantage of this...

Ransomware Predictions for 2022 The new year is traditionally a time to consider the future and set down new goals and directions for life. In the IT world, it is also a time to make predictions for the coming 12...

Recent Attacks, Threats, and Breaches There are so many breaches and attacks these days, that it is hard to keep up. Here are a few of the recent highlights: 1. Panasonic Breach Panasonic is the latest high-profile victim of cybercriminals....