On [insert date], Google announced the rollout of a critical software update for the Chrome web browser, affecting desktop users on Windows, Mac, and Linux platforms. This update addresses three newly identified vulnerabilities, each classified as ‘HIGH’ in severity. Notably, one of these vulnerabilities, known as CVE-2020-6418, has reportedly been…
A major cybersecurity incident has unfolded involving a 22-year-old man from North London who pleaded guilty to blackmailing tech giant Apple. The suspect claimed to possess access to over 300 million iCloud accounts, leveraging this information as a bargaining chip by demanding a ransom. This case sheds light on the…
Recent research has uncovered a critical hardware-level vulnerability affecting Intel processors, continuing a troubling trend in security flaws that have notably hampered performance through necessary patches. Two independent research groups disclosed to The Hacker News that these Intel CPUs are susceptible to a novel attack that exploits Meltdown-type vulnerabilities, bypassing…
The Rowhammer vulnerability has resurfaced as a significant concern for modern dynamic random access memory (DRAM) chips, enabling attackers to escalate privileges within targeted systems by exploiting memory access patterns that result in unintended bit flips. This critical issue arises from continuous access to specific memory rows, raising the potential…
Cramming for finals has become increasingly challenging, especially when educational platforms experience unexpected shutdowns. Recently, numerous students across the United States faced significant disruptions when Canvas entered “maintenance mode” due to a ransomware attack on its parent company, Instructure. The hacking group known as ShinyHunters has claimed responsibility for the…
In a significant move outside of the regular Patch Tuesday schedule, Adobe has released an extensive set of out-of-band software updates aimed at addressing a total of 41 newly discovered security vulnerabilities across six different products. This proactive approach follows Adobe’s recent communication regarding an impending security update for its…
In a significant cybersecurity revelation, a researcher has unveiled critical technical details regarding a remote code execution vulnerability impacting OpenWrt, a commonly utilized Linux-based operating system for network devices such as routers and gateways. This vulnerability, cataloged as CVE-2020-7982, is tied to the OPKG package manager’s flaw in its integrity…
Cyberattack Disrupts US Educational Institutions Amid Final Exams A significant cyberattack impacted schools and universities across the United States on Thursday, coinciding with student final exams. The online learning platform, Canvas, which is widely used in educational settings, experienced substantial disruptions as students prepared for crucial assessments. Instructure, the parent…
The United States Cybersecurity and Infrastructure Security Agency (CISA) has recently issued an advisory urging organizations to update all Active Directory credentials to enhance security against cyberattacks exploiting a known remote code execution (RCE) vulnerability within Pulse Secure VPN servers, regardless of whether they have applied patches. This warning follows…