Affects

Critical UNISOC Chip Vulnerability Affects Millions of Android Smartphones

Jun 4, 2022 by iHash Leave a Comment

A critical security flaw has been uncovered in UNISOC's smartphone chipset that could be potentially weaponized to disrupt a smartphone's radio communications through a malformed packet. "Left unpatched, a hacker or a military unit can leverage such a vulnerability to neutralize communications in a specific location," Israeli cybersecurity company Check Point said in a report … [Read more...] about Critical UNISOC Chip Vulnerability Affects Millions of Android Smartphones

Critical ‘Pantsdown’ BMC Vulnerability Affects QCT Servers Used in Data Centers

May 26, 2022 by iHash Leave a Comment

Quanta Cloud Technology (QCT) servers have been identified as vulnerable to the severe "Pantsdown" Baseboard Management Controller (BMC) flaw, according to new research published today. "An attacker running code on a vulnerable QCT server would be able to 'hop' from the server host to the BMC and move their attacks to the server management network, possibly continue and obtain … [Read more...] about Critical ‘Pantsdown’ BMC Vulnerability Affects QCT Servers Used in Data Centers

New Security Vulnerability Affects Thousands of Self-Managed GitLab Instances

Mar 4, 2022 by iHash Leave a Comment

Researchers have disclosed details of a new security vulnerability in GitLab, an open-source DevOps software, that could potentially allow a remote, unauthenticated attacker to recover user-related information. Tracked as CVE-2021-4191 (CVSS score: 5.3), the medium-severity flaw affects all versions of GitLab Community Edition and Enterprise Edition starting from 13.0 and all … [Read more...] about New Security Vulnerability Affects Thousands of Self-Managed GitLab Instances

Critical Root RCE Bug Affects Multiple Netgear SOHO Router Models

Nov 18, 2021 by iHash Leave a Comment

Networking equipment company Netgear has released yet another round of patches to remediate a high-severity remote code execution vulnerability affecting multiple routers that could be exploited by remote attackers to take control of an affected system. Tracked as CVE-2021-34991 (CVSS score: 8.8), the pre-authentication buffer overflow flaw in small office and home office … [Read more...] about Critical Root RCE Bug Affects Multiple Netgear SOHO Router Models

Unpatched High-Severity Vulnerability Affects Apple macOS Computers

Sep 21, 2021 by iHash Leave a Comment

Cybersecurity researchers on Tuesday disclosed details of an unpatched vulnerability in macOS Finder that could be abused by remote adversaries to trick users into running arbitrary commands on the machines. "A vulnerability in macOS Finder allows files whose extension is inetloc to execute arbitrary commands, these files can be embedded inside emails which if the user clicks … [Read more...] about Unpatched High-Severity Vulnerability Affects Apple macOS Computers

A Critical Random Number Generator Flaw Affects Billions of IoT Devices

Aug 9, 2021 by iHash Leave a Comment

A critical vulnerability has been disclosed in hardware random number generators used in billions of Internet of Things (IoT) devices whereby it fails to properly generate random numbers, thus undermining their security and putting them at risk of attacks. "It turns out that these 'randomly' chosen numbers aren't always as random as you'd like when it comes to IoT devices," … [Read more...] about A Critical Random Number Generator Flaw Affects Billions of IoT Devices

16-Year-Old Security Bug Affects Millions of HP, Samsung, Xerox Printers

Jul 20, 2021 by iHash Leave a Comment

Details have emerged about a high severity security vulnerability affecting a software driver used in HP, Xerox, and Samsung printers that has remained undetected since 2005. Tracked as CVE-2021-3438 (CVSS score: 8.8), the issue concerns a buffer overflow in a print driver installer package named "SSPORT.SYS" that can enable remote privilege and arbitrary code execution. … [Read more...] about 16-Year-Old Security Bug Affects Millions of HP, Samsung, Xerox Printers

Unpatched Virtual Machine Takeover Bug Affects Google Compute Engine

Jun 29, 2021 by iHash Leave a Comment

An unpatched security vulnerability affecting Google's Compute Engine platform could be abused by an attacker to take over virtual machines over the network. "This is done by impersonating the metadata server from the targeted virtual machine's point of view," security researcher Imre Rad said in an analysis published Friday. "By mounting this exploit, the attacker can grant … [Read more...] about Unpatched Virtual Machine Takeover Bug Affects Google Compute Engine

Critical Unpatched VMware Flaw Affects Multiple Corporates Products

Nov 24, 2020 by iHash Leave a Comment

VMware has released temporary workarounds to address a critical vulnerability in its products that could be exploited by an attacker to take control of an affected system. "A malicious actor with network access to the administrative configurator on port 8443 and a valid password for the configurator admin account can execute commands with unrestricted privileges on the … [Read more...] about Critical Unpatched VMware Flaw Affects Multiple Corporates Products

New PIN Verification Bypass Flaw Affects Visa Contactless Payments

Sep 8, 2020 by iHash Leave a Comment

Even as Visa issued a warning about a new JavaScript web skimmer known as Baka, cybersecurity researchers have uncovered an authentication flaw in the company's EMV enabled payment cards that permits cybercriminals to obtain funds and defraud cardholders as well as merchants illicitly.The research, published by a group of academics from the ETH Zurich, is a PIN bypass attack … [Read more...] about New PIN Verification Bypass Flaw Affects Visa Contactless Payments

eufy Solo IndoorCam C24 (2K, 2-Cam Kit, Plug-in) for $75

eufyCam 2 Pro Add-on Camera for $169

KyotoUI Pro Version: Lifetime License for $49

Apple iPad mini 4, 128GB (Refurbished: Wi-Fi Only) for $228

Apple iPad mini 4, 16GB – Gold (Refurbished: Wi-Fi Only) for $170