Researchers

Researchers Uncover Nuclei Vulnerability Enabling Signature Bypass and Code Execution – Go Health Pro

by
Researchers Uncover Nuclei Vulnerability Enabling Signature Bypass and Code Execution – Go Health Pro

Jan 04, 2025Ravie LakshmananVulnerability / Software Security A high-severity security flaw has been disclosed in ProjectDiscovery’s Nuclei, a widely-used open-source vulnerability scanner that, if successfully exploited, could allow attackers to bypass signature checks and potentially execute malicious code. Tracked as CVE-2024-43405, it carries a CVSS score of 7.4 out of a maximum of 10.0. It … Read more

Researchers Uncover PyPI Packages Stealing Keystrokes and Hijacking Social Accounts – Go Health Pro

by
Researchers Uncover PyPI Packages Stealing Keystrokes and Hijacking Social Accounts – Go Health Pro

Dec 24, 2024Ravie LakshmananMalware / Data Exfiltration Cybersecurity researchers have flagged two malicious packages that were uploaded to the Python Package Index (PyPI) repository and came fitted with capabilities to exfiltrate sensitive information from compromised hosts, according to new findings from Fortinet FortiGuard Labs. The packages, named zebo and cometlogger, attracted 118 and 164 downloads … Read more

Researchers uncover AMD chip flaw threatening cloud data – Go Health Pro

by
Researchers uncover AMD chip flaw threatening cloud data – Go Health Pro

Security researchers have identified a vulnerability in AMD processors that they have dubbed badRAM and which could allow threat actors with physical access to cloud computing environments to bypass encryption protections, reports The Record, a news site by cybersecurity firm Recorded Future. The flaw circumvents AMD’s Secure Encrypted Virtualization, which encrypts virtual machine memory to … Read more

Researchers uncover Chinese spyware used to target Android devices – Go Health Pro

by
Researchers uncover Chinese spyware used to target Android devices – Go Health Pro

Security researchers have uncovered a new surveillance tool that they say has been used by Chinese law enforcement to collect sensitive information from Android devices in China. The tool, named “EagleMsgSpy,” was discovered by researchers at U.S. cybersecurity firm Lookout. The company said at the Black Hat Europe conference on Wednesday that it had acquired … Read more

Researchers find security flaws in Skoda cars that may let hackers remotely track them – Go Health Pro

by
Researchers find security flaws in Skoda cars that may let hackers remotely track them – Go Health Pro

Security researchers have discovered multiple vulnerabilities in the infotainment units used in some Skoda cars that could allow malicious actors to remotely trigger certain controls and track the cars’ location in real time. PCAutomotive, a cybersecurity firm specializing in the automotive sector, unveiled 12 new security vulnerabilities impacting the latest model of the Skoda Superb … Read more

x