The NSA has raised the alarm over what it says is Russia's active exploitation of a remote-code execution flaw in Exim for which a patch exists. Read More
Topic: Exploit
Hackers Could Steal Your Home WI-Fi Password Through Amazon Ring Doorbell Flaw
Users of Amazon Ring doorbell were found to be in danger of having their home internet invaded by hackers, as the doorbell comes with a serious security flaw. Read More
DEF CON 2019: Researchers Demo Hacking Google Home for RCE
Here at a session at DEF CON on Thursday, the researchers shed light on their work "breaking" Google Home. What made the talk unique wasn't necessarily that Google Home smart speakers could be compromised using Megellan - that was public news in Dec. 2018 - rather it was how the hack was pulled off. Read More
Researchers Trick Tesla Autopilot Into Steering Into Oncoming Traffic
Researchers have devised a simple attack that might cause a Tesla to automatically steer into oncoming traffic under certain conditions. The proof-of-concept exploit works not by hacking into the car's onboard computing system, but by using small, inconspicuous stickers that trick the Enhanced Autopilot of a Model S 75 into detecting and then following a Read More
WordPress 5.1.1 Patches Remote Code Execution Vulnerability
WordPress this week addressed a vulnerability that could allow an unauthenticated attacker to execute code remotely and take over vulnerable websites. Read More
Exploit Code Published for Recent Container Escape Vulnerability
Proof-of-concept (PoC) code is now publicly available for a recently disclosed container escape vulnerability impacting popular cloud platforms, including AWS, Google Cloud, and numerous Linux distributions. Read More
Microsoft Exchange Vuln Enables Attackers to Gain Domain Admin Privileges
Microsoft Exchange 2013 and newer versions are vulnerable to a privilege escalation attack that gives anyone with a mailbox a way to gain domain administrator rights at potentially 90% of organizations running Active Directory and Exchange, according to a security researcher. Read More
New York to probe Apple’s FaceTime bug
New York officials have launched an investigation into Apple's FaceTime bug that allowed iPhone users to hear through someone else's iPhone without permission. Read More