A critical security flaw discovered in the RADIUS protocol, nicknamed BlastRADIUS (CVE-2024-3596), makes a wide range of networking equipment susceptible to MitM attacks. Although complex to exploit, a successful attack could have serious consequences. To mitigate BlastRADIUS, network devices like switches, routers, firewalls, VPN concentrators, access points, and DSL gateways need updates that add integrity […]
Hackers have targeted the WordPress Calendar plugin, a widely used WordPress tool with over 150,000 active installations. This significant security flaw, identified as an Arbitrary File Upload flaw (CVE-2024-5441), allows authenticated users, such as subscribers, to upload arbitrary files to a vulnerable site, potentially leading to remote code execution (RCE). The vulnerability was discovered on […]
A recent data breach at Fujitsu, a prominent Japanese tech giant, has resulted in the potential compromise of customer information. The company confirmed the incident in a statement, revealing that malware infiltrated its systems in March of 2024. Unlike a typical ransomware attack, this cyberattack employed sophisticated techniques to evade detection while exfiltrating sensitive data. […]