The Breach News

vBulletin Issues Patch Update for Recent RCE and SQL Injection Vulnerabilities

New vBulletin Patch Addresses Critical Security Vulnerabilities vBulletin, a popular forum software utilized by over 100,000 websites, has released a crucial security patch addressing three significant vulnerabilities that could lead to severe security breaches. The company previously patched a zero-day remote code execution vulnerability last month and now has identified…

Read MorevBulletin Issues Patch Update for Recent RCE and SQL Injection Vulnerabilities

We Analyzed 1 Million Exposed AI Services: The Alarming State of Security Revealed

As the software industry has evolved over recent decades to enhance product security, the rapid adoption of artificial intelligence (AI) threatens to undermine these advancements. Companies are rapidly implementing self-hosted large language model (LLM) infrastructures, driven by the potential of AI as a transformative tool and the urgency to increase…

Read MoreWe Analyzed 1 Million Exposed AI Services: The Alarming State of Security Revealed

SIM Cards in 29 Countries at Risk of Remote Simjacker Attacks

Recently, cybersecurity researchers have spotlighted a significant vulnerability known as SimJacker, affecting a variety of SIM cards. This flaw can be exploited remotely, allowing attackers to gain unauthorized access to mobile devices through a meticulously crafted binary SMS. The implications are severe, as the vulnerability poses a risk to countless…

Read MoreSIM Cards in 29 Countries at Risk of Remote Simjacker Attacks

Adobe Issues Emergency Security Updates for 82 Vulnerabilities Across Multiple Products

Adobe Releases Critical Patch Updates for Multiple Products On the third Tuesday of the month, Adobe has rolled out significant out-of-band security updates to address a substantial number of vulnerabilities across its product suite. This proactive measure comes in response to 82 identified security flaws, as noted in an early…

Read MoreAdobe Issues Emergency Security Updates for 82 Vulnerabilities Across Multiple Products

DAEMON Tools Supply Chain Attack Infects Official Installers with Malware

Targeted Supply Chain Attack on DAEMON Tools Software Discovered A recent investigation by Kaspersky has revealed a sophisticated supply chain attack targeting DAEMON Tools software. The attack involves tampering with the software’s installers, which are distributed through the official DAEMON Tools website and are signed with valid digital certificates from…

Read MoreDAEMON Tools Supply Chain Attack Infects Official Installers with Malware

Facebook Offers Rewards to Hackers for Reporting Security Vulnerabilities in Third-Party Apps

In response to prior security incidents and data misuse involving its platform, Facebook has taken significant steps to enhance the security of third-party applications and websites through an expanded bug bounty program. This initiative aims to address vulnerabilities in external apps that interface with Facebook, reinforcing the company’s commitment to…

Read MoreFacebook Offers Rewards to Hackers for Reporting Security Vulnerabilities in Third-Party Apps