The Breach News

Zero-Day Remote ‘Root’ Exploit Uncovered in AT&T DirecTV WVB Devices

Unpatched Zero-Day Exposure in AT&T DirecTV Vulnerability Poses Significant Risk Security researchers have unveiled a critical zero-day vulnerability in the firmware of the AT&T DirecTV Wireless Video Bridge (WVBR0-25), sparking concerns over the potential exploitation of millions of DirecTV users. The research has illuminated a flaw that attackers could leverage…

Read MoreZero-Day Remote ‘Root’ Exploit Uncovered in AT&T DirecTV WVB Devices

Armored Likho Targets Government and Energy Sectors Using BusySnake Stealer

Kaspersky’s latest findings reveal a newly identified threat group, dubbed Armored Likho, which is currently engaged in a sophisticated spear-phishing campaign. This operation predominantly targets government entities and energy sectors across Russia, Kazakhstan, and Brazil. Armored Likho has developed an extensive malware arsenal designed to extract credentials, confidential documents, and…

Read MoreArmored Likho Targets Government and Energy Sectors Using BusySnake Stealer

Pre-Installed Password Manager on Windows 10 Exposes Your Passwords to Hackers

Critical Vulnerability Discovered in Windows 10 Pre-installed Password Manager Recent findings reveal a significant security flaw in a commonly bundled password manager app, “Keeper,” that is shipped with some Windows 10 systems. As part of the Windows 10 Anniversary Update (Version 1607), Microsoft implemented the Content Delivery Manager, which allows…

Read MorePre-Installed Password Manager on Windows 10 Exposes Your Passwords to Hackers

Hackers Can Exploit 9 Popular AI Tools to Build Powerful Botnets

In the evolving landscape of artificial intelligence security, prompt injection has quickly emerged as a significant threat. Large language models (LLMs) struggle to differentiate between valid user commands and malicious inputs that may be embedded within emails, source code, and other third-party content. This vulnerability allows attackers to easily introduce…

Read MoreHackers Can Exploit 9 Popular AI Tools to Build Powerful Botnets

Public Disclosure of Two Major 0-Day Remote Exploits for vBulletin Forum

Critical Vulnerabilities Discovered in vBulletin Forum Software Security experts have unveiled two significant vulnerabilities in the popular vBulletin forum software, crucial for businesses that rely on this platform for online discussions. These unpatched flaws, found in version 5 of the software, present serious security risks, including the potential for remote…

Read MorePublic Disclosure of Two Major 0-Day Remote Exploits for vBulletin Forum

Serious Vulnerability in Samsung Android Browser Exposes “Same Origin Policy” Bypass خطر

Critical Vulnerability Discovered in Samsung Internet Browser Could Enable Data Theft A significant security vulnerability has been identified in the Samsung Internet Browser, which is pre-installed on millions of Samsung Android devices. This flaw has the potential to allow attackers to exfiltrate sensitive data from browser tabs when users inadvertently…

Read MoreSerious Vulnerability in Samsung Android Browser Exposes “Same Origin Policy” Bypass خطر

Critical Vulnerability in phpMyAdmin Allows Attackers to Compromise Databases

A significant security vulnerability has been identified in phpMyAdmin, a widely used application for managing MySQL databases. This vulnerability may enable remote attackers to execute dangerous operations on databases simply by deceiving administrators into clicking a malicious link. The vulnerability, discovered by Indian security researcher Ashutosh Barot, pertains to a…

Read MoreCritical Vulnerability in phpMyAdmin Allows Attackers to Compromise Databases

Major Vulnerabilities Impact Most Modern Devices; Potential Patch Could Slow CPU Performance

UPDATE: Security researchers have unveiled comprehensive technical information regarding two significant kernel side-channel vulnerabilities, Meltdown and Spectre. These vulnerabilities are not limited to Intel processors; they also affect systems operating with AMD and ARM processors, posing a risk of sensitive data extraction from system memory. The onset of the new…

Read MoreMajor Vulnerabilities Impact Most Modern Devices; Potential Patch Could Slow CPU Performance

Hundreds of GPS Tracking Services Exposing User Data to Hackers

Recent research has unveiled multiple vulnerabilities in a significant number of GPS services, posing substantial risks to millions of location tracking devices. These vulnerabilities can potentially expose a range of sensitive information, allowing unauthorized parties to access data associated with users of these devices. Discovered by security researchers Vangelis Stykas…

Read MoreHundreds of GPS Tracking Services Exposing User Data to Hackers