Cisco has rolled out patches addressing severe vulnerabilities that could be exploited to perform remote code execution and privilege escalation. The flaws lie in the SD-WAN vManage Software. The bugs could allow an unauthenticated attacker to steal information from vulnerable networks. Cisco also disclosed a denial-of-service issue in the same

Google is planning to eventually automatically enable two-factor authentication on users’ accounts to better secure them and prevent hacking. Google made the announcement on World Password Day, stating that it will ask people who have already enrolled themselves in the two-step verification feature to confirm their participation. Those who have

According to a report released by Recorded Future, deepfake attacks are on the rise and are expected to surge in the near future. Deepfakes have been a topic of concern for cybersecurity professionals as they have the ability to bypass biometric security protections, trick users into believing fraudulent material, commit

Security researchers at Microsoft have warned of 25 undocumented critical memory-allocation vulnerabilities that lie across a number of vendors’ IoT and industrial devices. The flaws could be used to execute malicious code throughout a network or cause an entire system to crash. The bugs were uncovered by Microsoft’s Azure Defender

Google has backed a new IoT security certification designed for mobile apps and VPNs, created by the Internet of Secure Things Alliance (ioXt). The program includes a mobile app profile, which consists of a set of security-related criteria by which apps can be certified for public use. The assessment also

Earlier this week, Facebook published its latest Coordinated Inauthentic Behavior report, in which it listed its most recent efforts to curb coordinated illegitimate behavior across the social media platform. According to the report, Facebook investigated and wiped out a long-running troll farm located in Albania with a widespread impact. The

Cyber-intelligence agency Hudson Rock discovered a leak in which the personal information of half a billion Facebook users has been leaked online. The information exposed includes phone numbers, locations, birthdates, Facebook IDs, full names, and email addresses. The data was discovered on a website known to be used by hackers.

Cybersecurity firm Trustwave has uncovered a vulnerability in the website CMS, Umbraco. The organization posted about the bug, which is a privilege escalation issue, on their website earlier this week. The flaw allows for low privileged users to elevate themselves to the status of admin and reap associated benefits and

Insurance provider CNA has suffered from a ransomware attack taking its systems offline temporarily. The attack occurred earlier this week, and the perpetrators used a new variant of the Phoenix CryptoLocker malware. CNA also experienced significant business disruption due to measures taken by cybersecurity professionals to secure its systems from

Security researchers at CitizenLab have conducted an extensive research investigation into TikTok’s source code, concluding that the code is in line with industry standards. TikTok has been widely criticized for poor privacy and data-sharing practices, censorship concerns, and national security risks as the app is owned by Chinese tech giant