Log4J Vulnerability – Reaches Endemic
The Log4Shell vulnerability in open-source library Log4j has reached endemic proportions and the aftershock could reverberate for a decade or longer. The report by the Cyber Safety Review Board (CSRB)…
Google new Data Safety Section hides App permissions
Google plans to remove the app permissions list from both the mobile app and the web as a part of Data Safety initiative Earlier this year, Google rolled out the…
Fantasy Premier League Introduces MFA From 2022/23 Season
The English Premier League has introduced MFA controls to its official Fantasy Premier League game offering football fans the option to secure their accounts. From 2022/23 season 2FA will have…
Lilith Ransomware
A new ransomware operation Lilith, has emerged and already posted about its first victim on its leak site. Lilith is C/C++ console-based ransomware created for targeting 64-bit Windows systems. Once…
Digium Phone Flaws
Researchers has took a campaign in to limelight targeting the Elastix system used in Digium phones. Tracked as CVE-2021-45461 with CVSS of 9.8 , exist in the Rest Phone Apps module to implant a web…
PFC – US Debt Collector Breached
Professional Finance Company a US debt collector from Colorado has reported a data breach affecting 1.9 million individuals across over 650 different healthcare providers. An unauthorized intruder accessed personal data…
WordPress Plug-in Kaswara bug – Millions of websites affected
A severe vulnerability existed in Kaswara Modern WPBakery Page Builder WordPress Addons are affecting millions of websites. The Kaswara Addon was abandoned by its author before an arbitrary file upload…
CISA flags Juniper Vulnerabilities
Juniper Networks has patched critical-rated bugs in its Junos Space, Contrail Networking and NorthStar Controller products. CISA flagged a caution for patching these flaws as soon as possible The advisory…