Skip to main content

Security News

Filter by:

SonicWall firewall maker hacked using zero-day in its VPN device

Security hardware manufacturer SonicWall has issued an urgent security notice about threat actors exploiting a zero-day vulnerability in their VPN products to perform attacks on their internal systems.
Bleeping Computer 25 Jan 2021 128 Views

Apple Kills MacOS Feature Allowing Apps to Bypass Firewalls

Security researchers lambasted the controversial macOS Big Sur feature for exposing users' sensitive data.
Threatpost 16 Jan 2021 248 Views

Ubiquiti: Change Your Password, Enable 2FA

Ubiquiti, a major vendor of cloud-enabled Internet of Things (IoT) devices such as routers, network video recorders, security cameras and access control systems, is urging customers to change their passwords and enable multi-factor authentication. The company says an incident...
Krebs on Security 12 Jan 2021 281 Views

NSA Urges SysAdmins to Replace Obsolete TLS Protocols

The NSA released new guidance providing system administrators with the tools to update outdated TLS protocols.
Threatpost 7 Jan 2021 339 Views

WhatsApp Will Delete Your Account If You Don't Agree Sharing Data With Facebook

"Respect for your privacy is coded into our DNA," opens WhatsApp's privacy policy. "Since we started WhatsApp, we've aspired to build our Services with a set of strong privacy principles in mind." But come February 8, 2021, this...
The Hacker News 7 Jan 2021 28862 Views

Happy New Year: Jan 1, 2021 security cert expiration causes havoc for some Check Point VPN users

Outdated clients stop working, organizations with thousands of end-points told to switch out .sys files It wasn't the best of New Year's Day mornings for some Check Point customers; in addition to possible hangovers, those who lagged with their patching...
The Register 5 Jan 2021 28829 Views

Secret Backdoor Account Found in Several Zyxel Firewall, VPN Products

Zyxel has released a patch to address a critical vulnerability in its firmware concerning a hardcoded, undocumented secret account that could be abused by an attacker to login with administrative privileges and compromise its networking devices. The flaw, tracked as CVE-2020-29583 (...
The Hacker News 5 Jan 2021 30146 Views

A Google Docs Bug Could Have Allowed Hackers See Your Private Documents

Google has patched a bug in its feedback tool incorporated across its services that could be exploited by an attacker to potentially steal screenshots of sensitive Google Docs documents simply by embedding them in a malicious website. The flaw was discovered on July 9 by security researcher Sreeram...
The Hacker News 29 Dec 2020 38303 Views

New 5G Network Flaws Let Attackers Track Users' Locations and Steal Data

The Hacker News 16 Dec 2020 39412 Views

Ransomware Attackers Using SystemBC Malware With RAT and Tor Proxy

The Hacker News 16 Dec 2020 39415 Views