Security News

Metasploit: Release Intended to Call Attention to Urgent Need to Patch VulnerabilityA new weaponized proof-of-concept exploit for the BlueKeep vulnerability in Windows has been released by...

An initial public exploit targeting the recently addressed BlueKeep vulnerability in Microsoft Windows has been added to Rapid7’s Metasploit framework.  read more

Except one – a 'your phone is now my phone' bug reported months ago and still not fixed Google this week emitted the September edition of its monthly Android security updates – and has left at...

Exploit broker Zerodium has implemented a $2.5 million price tag for a zero-click 0-day in Android.

Well, there's some good news for hackers and vulnerability hunters, though terrible news for Google, Android device manufacturers, and their billions of users worldwide. The zero-day buying and...

Exploit acquisition firm Zerodium announced on Tuesday that it’s offering up to $2.5 million for powerful Android exploits, more than what it’s offering for the same type of exploit on iOS. read more

Thousands of dollars and new kit up for grabs if you can blow a hole in Zuck's video-conf gear Facebook is opening its Portal videoconferencing hardware to hackers for the first time at the...

A recently observed variant of the Asruex backdoor acts as an infector by targeting old vulnerabilities in Microsoft Office and Adobe Reader and Acrobat 9.x, Trend Micro reports.  read more

Cisco has fixed over 30 vulnerabilities in various solutions, including Cisco UCS Director, Cisco UCS Director Express for Big Data, Cisco IMC Supervisor, and the Cisco 220 Series smart switches....

Flawed code traced to home build system, vulnerability can be attacked in certain configs The maintainers of Webmin – an open-source application for system administration tasks on Unix-flavored...