Tag: security
Researcher nets major reward for finding Facebook bug able to unlock the gates to its internal systems
A security flaw found in Facebook’s ad platform has been fixed by Meta The researcher who discovered the flaw was awarded a $100,000 bug bounty The flaw allowed the researcher to effectively take control of a Facebook server Meta has awarded cybersecurity researcher Ben Sadeghipour a bug bounty of $100,000…
Read More
The biggest addiction treatment provider in the US says it was hit by data breach
BayMark Health Services confirmed suffering a cyberattack in September 2024 Crooks stole Social Security numbers, driver’s license numbers, and more The company did not say how many people were affected BayMark Health Services, a US healthcare provider which helps people treat and recover from drug abuse and mental health problems,…
Read More
Another top WordPress plugin found carrying critical security flaws
Researchers from Patchstack find two new flaws in Fancy Product Designer The Radykal-built WordPress plugin has more than 20,000 active users The flaws allowed for remote code execution, arbitrary file upload, and more A popular WordPress plugin was found carrying two critical vulnerabilities that allow threat actors to upload files,…
Read More
Experts warn DNA sequencers are vulnerable to bootkit attacks
Researchers from Eclypsium find vulnerability in the way iSeq 100 boots up The bug allows threat actors to establish persistence, brick the device, or tamper with the results A patch has since been made available, so update now A popular DNA sequencer has been found carrying a vulnerability allowing threat…
Read More
Ivanti warns another critical security flaw is being attacked
Ivanti uncovers two security vulnerabilities, including one critical-severity One of the flaws was being abused as a zero-day by a Chinese threat actor Researchers uncovered never-before-seen malware being deployed in the attack Ivanti has warned customers of a critical vulnerability impacting its VPN appliances that is being actively exploited in…
Read More
SonicWall tells admins to patch worrying SSLVPN flaw immediately
SonicWall is mailing IT admins, warning them about a high-severity vulnerability in its firewalls The bug is “susceptible to actual exploitation” it said A patch is available, as well as a few mitigation measures SonicWall has recently addressed a high-severity vulnerability in its firewalls which is “susceptible to actual exploitation.”…
Read More