News about security failures, exploits and vulnerabilities in systems
Microsoft has published off-cycle updates to correct critical vulnerability in ASP.NET Core that could allow an attacker to raise its privileges in affected systems. Registered as…
Security researchers have detected a new variant of a malware known as LOTUSLITE that is now distributed by a decoy oriented to the banking sector in India. According to the analy…
Microsoft has published an off-schedule security update to correct critical vulnerability on ASP.NET Core that allows for the climbing of privileges. The failure, recorded as CVE-…
The National Agency for Insurance Titles, better known as ANTS, has recognized a security incident that could have exposed personal data from French citizens after an attack last …
The devices that "move" traditional serial equipment with IP networks - the serious converters - to- IP - are often invisible until something fails. They are simple and effective …
For years, fraud security and user experience have been presented as two irreconcilable forces: more controls mean more friction and annoying customers; less controls mean comprom…
A serious vulnerability in Apache ActiveMQ is leaving thousands of servers unaccounted for and there is already evidence of attacks going on. Non-profit researchers <a...
Security researchers have put another disturbing lesson on the table: when development environments or programming "agents" allow to create files and, at the same time, call nativ…
The US Agency for Infrastructure and Cybersecurity. US (CISA) has recently added eight vulnerabilities to its catalogue of Known Exploited Vulnerabilities (KEV), a clear sign that…
