0 Comentários
0 Compartilhamentos
349 Visualizações
0 Anterior
Pesquisar
Conheça novas pessoas, crie conexões e faça novos amigos
-
Faça Login para curtir, compartilhar e comentar!
-
EternalBlue (MS17-010): The Exploit That Powered WannaCryIn 2017, a leaked NSA exploit known as EternalBlue changed cybersecurity forever. Targeting a flaw in Microsoft’s SMBv1 protocol (MS17-010), EternalBlue allowed unauthenticated remote code execution over TCP port 445. An attacker could send a specially crafted SMB packet and gain SYSTEM-level access to a vulnerable Windows machine — no credentials required. The exploit abused improper...0 Comentários 0 Compartilhamentos 618 Visualizações 0 Anterior
-
Fortinet Patches Actively Exploited FortiCloud SSO Zero-Day — Urgent Update RequiredFortinet has started rolling out security updates for a critical zero-day vulnerability affecting its FortiOS platform and associated products, after multiple organizations reported real-world attacks that bypass authentication and grant unauthorized administrative access. What Was Happening Reports from customers in late January confirmed that attackers were able to access FortiGate...0 Comentários 0 Compartilhamentos 607 Visualizações 0 Anterior
-
Google Patches High-Severity WebView Vulnerability (CVE-2026-0628) — Update NowGoogle has released an urgent security update to fix a high-severity vulnerability in the Chrome WebView component, tracked as CVE-2026-0628. This flaw posed a significant threat to devices and applications that use WebView to render web content, including Android apps and certain desktop applications, and could allow attackers to bypass important browser-level security protections. What Is...0 Comentários 0 Compartilhamentos 867 Visualizações 0 Anterior
-
Honeywell CCTV Cameras Vulnerable to Account Hijacking (CVE-2026-1670)A critical vulnerability has been disclosed in multiple Honeywell CCTV camera models that could allow remote attackers to take over administrative accounts without authentication. The issue, tracked as CVE-2026-1670, carries a CVSS score of 9.8 (Critical) and has been highlighted in an industrial control systems advisory by the U.S. Cybersecurity and Infrastructure Security Agency (CISA)....0 Comentários 0 Compartilhamentos 340 Visualizações 0 Anterior
-
How a Server Vulnerability Led to Crypto Mining on Our InfrastructureLast week, we witnessed a security incident that started as a simple performance issue and evolved into a cryptocurrency mining investigation. Here's how these attacks work and what you need to know to protect your infrastructure from similar threats. The Deceptive Beginning It always starts innocently. Pages load slowly, applications feel sluggish, and users start complaining. Your first...0 Comentários 0 Compartilhamentos 809 Visualizações 0 Anterior
-
Microsoft Patches Actively Exploited Office Vulnerability — Update ImmediatelyMicrosoft has released an urgent security update for a critical vulnerability affecting Microsoft Office, and it’s one users should not ignore. The flaw is already being exploited in real-world attacks, meaning systems that haven’t been updated are actively at risk. What’s the Vulnerability? The issue, tracked as CVE-2026-21509, allows attackers to bypass key Microsoft Office security...0 Comentários 0 Compartilhamentos 774 Visualizações 0 Anterior
-
New Osiris Ransomware Uses Advanced Evasion Technique to Bypass Security ToolsSecurity researchers have identified a new ransomware strain called Osiris that employs sophisticated evasion methods to disable endpoint protection before encrypting systems. The malware leverages a technique known as Bring Your Own Vulnerable Driver (BYOVD), allowing attackers to execute malicious code with elevated privileges while circumventing detection by traditional security tools. What...0 Comentários 0 Compartilhamentos 629 Visualizações 0 Anterior
-
Researchers Find Over 175,000 AI Servers Publicly Exposed WorldwideA new joint investigation by cybersecurity researchers from SentinelOne’s SentinelLABS and Censys has uncovered a staggering number of publicly accessible artificial intelligence servers — raising serious security concerns for organisations and developers deploying AI systems. According to the analysis, researchers discovered more than 175,000 unique Ollama AI servers exposed directly to...0 Comentários 0 Compartilhamentos 736 Visualizações 0 Anterior
-
What Is Exploit-DB and Why It Matters in CybersecurityExploit-DB is one of the most widely used public databases in the cybersecurity world, yet it is often misunderstood outside of security research circles. Maintained by Offensive Security, Exploit-DB serves as an archive of publicly disclosed exploits and proof-of-concept (PoC) code tied to real vulnerabilities. For defenders, the database is not about learning how to hack systems — it's about...0 Comentários 0 Compartilhamentos 552 Visualizações 0 Anterior
-
Windows Notepad Zero-Day Vulnerability (CVE-2026-20841)Overview and How It Worked In February 2026, Microsoft released security updates addressing a remote code execution vulnerability in the modern Windows Notepad application, tracked as CVE-2026-20841. The flaw was rated high severity, and users were advised to apply updates immediately. The vulnerability stemmed from how Notepad handled Markdown files containing clickable links....0 Comentários 0 Compartilhamentos 469 Visualizações 0 Anterior
English
Arabic
French
Spanish
Deutsch
Turkish
Dutch
Italiano
Russian
Romaian
Portuguese (Brazil)
Greek