[remote] TP-Link Archer AX21 – Unauthenticated Command Injection
TP-Link Archer AX21 – Unauthenticated Command Injection
TP-Link Archer AX21 – Unauthenticated Command Injection
Request-Baskets v1.2.1 – Server-side request forgery (SSRF)
Cybersecurity researchers have disclosed details of a trio of side-channel attacks that could be exploited to leak sensitive data from modern CPUs.
Called Collide+Power (CVE-2023-20583), Downfall (CVE-2022-40982), and Inception (CVE-2023-20569), the no…
Hackers associated with China’s Ministry of State Security (MSS) have been linked to attacks in 17 different countries in Asia, Europe, and North America from 2021 to 2023.
Cybersecurity firm Recorded Future attributed the intrusion set to a nation-sta…
xurlfind3r is a command-line interface (CLI) utility to find domain’s known URLs from curated passive online sources. Features Fetches URLs from curated passive sources to maximize results: AlienVault’s OTX BeVigil Common Crawl URLScan Git…
Validate security continuously across your full stack with Pen Testing as a Service.
In today’s modern security operations center (SOC), it’s a battle between the defenders and the cybercriminals. Both are using tools and expertise – however, the cyber…
The U.K. Electoral Commission on Tuesday disclosed a “complex” cyber attack on its systems that went undetected for over a year, allowing the threat actors to access years worth of voter data belonging to 40 million people.
“The incident was identified…
Exposed Kubernetes (K8s) clusters are being exploited by malicious actors to deploy cryptocurrency miners and other backdoors.
Cloud security firm Aqua, in a report shared with The Hacker News, said a majority of the clusters belonged to small to mediu…
A command injection vulnerability (Zyxel P660HN-T1A v1) in the Remote System Log forwarder function of firmware version 3.40 (ULM.0) b3 could allow a remote unauthenticated attacker to execute some OS commands by sending a crafted HTTP request.
Google has introduced a new security feature in Android 14 that allows IT administrators to disable support for 2G cellular networks in their managed device fleet.
The search giant said it’s introducing a second user setting to turn off support, at the…