RCE ‘Bug’ Found and Disputed in Popular PHP Scripting Framework
Impacted are PHP-based websites running a vulnerable version of the web-app creation tool Zend Framework and some Laminas Project releases.
Read More
github
Gitpaste-12 Worm Widens Set of Exploits in New Attacks
The worm returned in recent attacks against web applications, IP cameras and routers.
Read MoreGerman COVID-19 Contact-Tracing Vulnerability Allowed RCE
Bug hunters at GitHub Security Labs help shore up German contact tracing app security, crediting open source collaboration.
Read MoreGitpaste-12 Worm Targets Linux Servers, IoT Devices
The newly discovered malware uses GitHub and Pastebin to house component code, and harbors 12 different initial attack vectors.
Read MoreGoogle, Intel Warn on ‘Zero-Click’ Kernel Bug in Linux-Based IoT Devices
Intel and Google are urging users to update the Linux kernel to version 5.9 or later.
Read MoreMicrosoft Kills 18 Azure Accounts Tied to Nation-State Attacks
An APT group has started heavily relying on cloud services like Azure Active Directory and OneDrive, as well as open-source tools, to obfuscate its attacks.
Read MoreDHS Issues Dire Patch Warning for ‘Zerologon’
The deadline looms for U.S. Cybersecurity and Infrastructure Security Agency’s emergency directive for federal agencies to patch against the so-called ‘Zerologon’ vulnerability.
Read MoreMedical Data Leaked on GitHub Due to Developer Errors
Up to 200,000 patient records from Office 365 and Google G Suite exposed by hardcoded credentials and other improper access controls.
Read MorePoC Exploit Targeting Apache Struts Surfaces on GitHub
Researchers have discovered freely available PoC code and exploit that can be used to attack unpatched security holes in Apache
Read More