Heimdal
Latest Articles

Tag: vulnerability

Cybersecurity News | QUICK READ

Patched Zoho Vulnerability Is Being Exploited by Hackers

The ManageEngine ADSelfService Plus Bug Is Being Abused in a New Malicious Campaign.

Cybersecurity News | QUICK READ

The Discovery of a Polygon Vulnerability Rewarded with a Prize to the Tune of $2 Million

A Researcher Was Rewarded with $2 Million for the Critical Flaw He Found in Polygon.

Cybersecurity News | QUICK READ

GitHub Revokes Duplicate SSH Authentication Keys

The Weak SSH Authentication Keys Were Generated Using a Library that Incorrectly Created Duplicate RSA Keypairs.

Cybersecurity News | QUICK READ

A New Flaw Was Discovered in the Microsoft Windows Platform Binary Table (WPBT)

The Vulnerability Could Allow Hackers to Install Rootkits on Windows Devices.

Cybersecurity News | QUICK READ

Netgear RCE in SOHO Routers Fixed by the Enterprise

The Flaw Found in Circle Parental Control Service on Small Office/ Home Office Routers Is Now Fixed by the Company.

Cybersecurity News | QUICK READ

FBI and CISA Warn Regarding a Critical Zoho Bug

It Seems that State-backed APT Groups Are Actively Exploiting a Critical Flaw in Zoho.

Cybersecurity News | QUICK READ

Microsoft Fixed a Bug That Was Allowing Hackers to Take Over Azure Containers

The Vulnerability Found Allowed a Malicious Container to Take Over Other Containers.

Cybersecurity News | QUICK READ

The Ongoing Office 365 Zero-Day Attacks Have a Temporary Fix

The Fix Can Mitigate a Remote Code Execution Vulnerability that Exists in Windows.

Cybersecurity News | QUICK READ

A Microsoft Exchange ProxyToken Bug May Allow Hackers to Steal User Emails

The Vulnerability Doesn’t Require Authentication to Access Emails From a Target Account.

Cybersecurity News | QUICK READ

New IoT Bug Discovered in Devices Connected to Kalay Network

Audio and Video Streamings Are Impacted as Hackers Can Gain Access to Them.

Cybersecurity News | QUICK READ

Ford Vulnerability Leads to Data Exposure

Researchers Have Disclosed a Bug Located in Pega Infinity.

Cybersecurity News | QUICK READ

John Deere Security Vulnerabilities Put Agriculture at Risk

Researchers Discovered Some Bugs in John Deere’s Systems.

Cybersecurity News | QUICK READ

PwnedPiper Vulnerabilities Found in Swisslog’s Translogic Pneumatic Tube System

The Nine Vulnerabilities Were Discovered in Critical Infrastructure Used by 80% of Major Hospitals in North America.

Access Management | QUICK READ

Hackers Might Gain Admin Rights Through a 16-years-old Vulnerability

Printer Driver Bug in Samsung, Xerox and HP Devices Could Lead to Local Elevation of Privileges.

Cybersecurity News | QUICK READ

HelloKitty Ransomware Is Now Going After Vulnerable SonicWall Devices

CISA Disclosed That Threat Actors Are Apparently Targeting “A Known, Previously Patched, Vulnerability” That Was Found in Sonicwall Secure Mobile Access.

Cybersecurity News | QUICK READ

Hackers Could Locally Exploit a New Windows Spooler Vulnerability

The Windows Spooler Saga Goes On with One More Hit: CVE-2021-34481 Targets Locally Exploitation of System Privileges.

Account security | INTERMEDIATE READ

What Is Session Hijacking. Session Hijacking Types

Don’t Let the Bad Guys Have Their Way with Your Account.

Cybersecurity News | QUICK READ

Four Security Flaws Found in Sage X3 Enterprise Management Software

The Security Vulnerabilities Have Been Discovered in the Sage X3 Enterprise Resource Planning (ERP) Product and Were Patched in March.  

Cybersecurity News | QUICK READ

The PrintNightmare Threat Issue: Microsoft Shares Its Input

The Well-Known PrintNightmare Threat Is Now Being Addressed by Microsoft. The Company Officially Shared Its Input on the Nature of the Bug and Also Advised on Mitigation Measures Until New Security Updates.

Cybersecurity News | QUICK READ

Microsoft Finds New NETGEAR Firmware Vulnerabilities

Microsoft’s 365 Defender Research Team Revealed They Are Flagging Several Gaping Security Holes in Firmware Shipped on NETGEAR Routers.

Cybersecurity News | QUICK READ

Atlassian Domain Flaws Could Have Led to Data Leakage and Account Control with Just One-click Exploit

A Research Conducted by Security Analysts Indicated Some Atlassian Domain Flaws That Could Have Led to Account Full Takeover.

Cybersecurity News | QUICK READ

An Unpatched Flaw Existing in Linux Pling Store Apps Might Lead to Supply-Chain Attacks

The Critical Vulnerability Seems to be Affecting Pling-Based Free and Open-Source Software (FOSS) Marketplaces for the Linux Platform.

Cybersecurity News | QUICK READ

The SonicWall Bug Was Only Partially Fixed

The CVE-2020-5135 Vulnerability Was Believed to Be Patched, but It Seems that the Vulnerability Was Not Properly Patched Until Now.

Cybersecurity News | QUICK READ

Tracking Vulnerability Fixed on Tor Browser

Tor Browser 10.0.18 Was Released in Order to Fix Numerous Bugs, Including a Vulnerability That Allows Sites to Track Users by Fingerprinting Applications Installed on Their Devices.

Cybersecurity News | QUICK READ

A Linux System Service Bug Allows the Root on Modern Distros

Malicious Attackers Are Now Able to Get a Root Shell by Exploiting an Authentication Bypass Vulnerability in the Polkit Auth System Service.

Cybersecurity News | QUICK READ

New Rowhammer Attack Technique Discovered by Google

The Tech Giant Released the Details of a New Rowhammer Vulnerability Dubbed “Half-Double” That Exploits Increasingly Smaller DRAM Chips.

Heimdal XDR logo

One Platform. Total Security.

Experience the Power of Heimdal XDR the Unified Security Platform that Delivers Comprehensive Protection against Next-gen Threats