Critical Vulnerability Discovered in Ghostscript Software In a significant cybersecurity development, a researcher from Google Project Zero has identified a severe remote code execution (RCE) vulnerability in Ghostscript, an open-source interpreter widely used for processing Adobe Systems’ PostScript and PDF files. Ghostscript, written in C, operates across various platforms, including…
Major URL Spoofing Vulnerability Discovered in Microsoft Edge and Apple Safari A significant security vulnerability has emerged that allows attackers to spoof URLs in the Microsoft Edge browser on Windows and Apple Safari on iOS. This flaw underscores escalating concerns over online security, particularly for users of these popular web…
The urgency is palpable for Windows and Linux users, who must urgently update cryptographic keys to safeguard their systems from firmware-based UEFI infections. This type of malware is particularly insidious, as it executes before the operating system and antimalware solutions can activate, making it especially challenging to detect and eradicate.…
New Cold Boot Attack Poses Threat to Sensitive Data on Modern Computers Security researchers have unveiled a sophisticated new variant of the Cold Boot Attack, a technique that allows unauthorized access to sensitive information—such as passwords and encryption keys—stored on many contemporary systems, including those utilizing full disk encryption. Traditionally…
Security Flaw Discovered in macOS Mojave’s Privacy Features On the same day Apple rolled out its latest macOS Mojave operating system, a security researcher uncovered a critical vulnerability that potentially allows malicious applications to bypass newly implemented privacy controls. This discovery raises significant concerns regarding the security of sensitive user…
Apple iOS 12.1 Passcode Bypass Vulnerability Exposed In a recent development, security researcher Jose Rodriguez has uncovered a critical passcode bypass vulnerability in Apple’s newly released iOS 12.1. This exploit enables unauthorized access to private contact information on locked iPhones. The incident highlights concerns over the effectiveness of security measures…
Pwn2Own 2018: A Showcase of Mobile Vulnerabilities The Pwn2Own 2018 mobile hacking competition, held in Tokyo on November 13-14, demonstrated the ongoing vulnerability of even well-secured smartphones. White hat hackers successfully exploited fully patched devices, including flagship models from renowned manufacturers, revealing concerning security gaps. Key targets included the iPhone…
New iOS Vulnerability Exposes iPhone Users to Remote Jailbreak Threats In a significant security development, a Chinese cybersecurity researcher has disclosed critical vulnerabilities in Apple’s Safari web browser and iOS, potentially allowing remote attackers to jailbreak iPhone X devices operating on iOS 12.1.2 and earlier versions. This revelation raises concerns…
