Over 30,000 GitLab servers still unpatched against critical bug Post Views: 683 Reading Time: 1 Minute A critical unauthenticated, remote code execution GitLab flaw fixed on April 14, 2021, remains exploitable, with over 50% of deployments remaining...
‘Trojan Source’ attack method can hide bugs into open-source code Post Views: 640 Reading Time: 2 Minutes Academic researchers have released details about a new attack method they call “Trojan Source” that allows injecting vulnerabilities into the...
Chaos ransomware targets gamers via fake Minecraft alt lists Post Views: 357 Reading Time: 1 Minute The Chaos Ransomware gang encrypts gamers’ Windows devices through fake Minecraft alt lists promoted on gaming forums. Minecraft is a massively...
All Windows versions impacted by new LPE zero-day vulnerability Post Views: 3,397 Reading Time: 1 Minute A public proof-of-concept (PoC) exploit and technical details for an unpatched Windows zero-day privilege elevation vulnerability has been disclosed that...
Sensitive data of 400,000 German students exposed by API flaw Post Views: 406 Reading Time: 1 Minute Approximately 400,000 users of Scoolio, a student community app widely used in Germany, had sensitive information exposed due to an API flaw in the platform....
Brutal WordPress plugin bug allows subscribers to wipe sites Post Views: 781 Reading Time: 1 Minute A high severity security flaw found in a WordPress plugin, known as Hashthemes Demo Importer, with more than 8,000 active installs can let authenticated...
