1.6 C
Johannesburg

Tuesday’s Magento 1 EOL Leaves Clock Ticking on 100K Online Stores

Adobe and payment-card companies are making last-minute pleas for e-commerce sites to update to Magento 2, to avoid Magecart attacks and more. Read more

Office 365 Users Targeted By ‘Coronavirus Employee Training’ Phish

Threat actors shift focus from COVID-19 to employee coronavirus training and current events like Black Lives Matter as cyber-attacks continue to rise. Read more

Small Businesses Tapping COVID-19 Loans Hit with Data Exposure

The SBA said sensitive information about applicants may have been revealed to others applying for disaster loan program funds. Read more

PPE, COVID-19 Medical Supplies Targeted by BEC Scams

FBI said that government agencies aiming to buy critical items like ventilators have unknowingly transferred funds to threat actors. Read more

Critical CODESYS Bug Allows Remote Code Execution

CVE-2020-10245, a heap-based buffer overflow that rates 10 out of 10 in severity, exists in the CODESYS web server and takes little skill to exploit. Read more

AA20-049A: Ransomware Impacting Pipeline Operations

Original release date: February 18, 2020 | Last revised: June 30, 2020SummaryNote: This Activity Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK™) framework. See the MITRE...

Latest article

Bugtraq: LPE and RCE in OpenSMTPD’s default install (CVE-2020-8794)

LPE and RCE in OpenSMTPD's default install (CVE-2020-8794) Read more

Online Shopping Portal 3.1 SQL Injection

Online Shopping Portal version 3.1 suffers from a remote SQL injection vulnerability. Read more

CVE-2020-15034

NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Monitoring-Setup.php tet parameter....