Security Research and Intelligence

WordPress Plugin Contact Form 7 Critical File Upload Vulnerability (CVE-2020-35489)

Contact Form 7 is a popular WordPress plugin that is used to create, customize, and manage multiple contact forms on…

Comments Off on WordPress Plugin Contact Form 7 Critical File Upload Vulnerability (CVE-2020-35489)

December 18, 2020

Endpoint Security and Management / Security Research and Intelligence / Vulnerability Management

Critical Zero-Day in HPE Systems Insight Manager Revealed

Hewlett Packard Enterprise recently revealed a security flaw in its Systems Insight Manager software (Vulnerability in HPE Systems). This zero-day…

Comments Off on Critical Zero-Day in HPE Systems Insight Manager Revealed

December 17, 2020

Endpoint Security / Endpoint Security and Management / Regulatory Compliance / Vulnerability Management

The System Administrator Problems and Solutions in IT Security!

The system administrator's problems and solutions are never-ending. Technology is pushing boundaries and helping businesses make bigger and better decisions.…

Comments Off on The System Administrator Problems and Solutions in IT Security!

December 15, 2020

Endpoint Management / Endpoint Security and Management / Security Research and Intelligence

Apple Critical Security Updates December 2020

Apple released security updates for multiple products. The exploitation of some of these security flaws will allow an attacker to…

Comments Off on Apple Critical Security Updates December 2020

December 15, 2020

Endpoint Security and Management / Security Research and Intelligence

SolarWinds SUNBURST Backdoor Compromises Multiple Global Victims

Highly evasive hackers breached Orion IT monitoring and management software of SolarWinds and deployed malware updates to it. It is…

Comments Off on SolarWinds SUNBURST Backdoor Compromises Multiple Global Victims

December 15, 2020

Security Research and Intelligence

Critical Command Injection Vulnerabilities in D-Link DSR VPN Routers

Multiple critical command injection vulnerabilities have identified in the D-Link DSR VPN router family products. These vulnerabilities are identified with…

Comments Off on Critical Command Injection Vulnerabilities in D-Link DSR VPN Routers

December 10, 2020

Security Research and Intelligence

Patch Tuesday: Microsoft Security Bulletin Summary for December 2020

Microsoft Security Bulletin December 2020 has rolled out December Patch Tuesday security updates for 58 vulnerabilities in its product line,…

Comments Off on Patch Tuesday: Microsoft Security Bulletin Summary for December 2020

December 10, 2020

Endpoint Security / Patch Management / Regulatory Compliance / Vulnerability Management

Closing the Ever-Widening Gap Between Vulnerability Scanning and Patch Management

Security risk management is a complicated and time-consuming affair. Organizations spend many resources to ensure all their business operations and…

Comments Off on Closing the Ever-Widening Gap Between Vulnerability Scanning and Patch Management

December 8, 2020

Security Research and Intelligence

VMware Products Under Active Attack Through a Critical Zero-Day Vulnerability

VMware has released security updates to fix a critical vulnerability that is being exploited in the wild. According to the…

Comments Off on VMware Products Under Active Attack Through a Critical Zero-Day Vulnerability

December 8, 2020

Security Research and Intelligence

DarkIRC Botnet: Infecting Thousands of Unpatched Oracle WebLogic Servers

DarkIRC is a multi-featured botnet. The bot comes with a variety of capabilities like keylogging, the ability to download files…

Comments Off on DarkIRC Botnet: Infecting Thousands of Unpatched Oracle WebLogic Servers

December 3, 2020