CATEGORIES

Items tagged with vulnerability

image
by Nathan Ord - Thu, Nov 12, 2020
Google Squashes A Pair Of Chrome Zero-Day Security Exploits, But You Need To Update ASAP
Google has released a new version of Google Chrome today after tackling two more high-profile, zero-day exploits. Over the last several weeks, Google has found multiple attack vectors and has been squashing them at a rapid pace, so this is just a couple more on the pile. Users are advised to upgrade Chrome ASAP, as... Read more...
News
image
by Brittany Goetting - Thu, Nov 12, 2020
Microsoft Warns Against Using SMS-Based Two-Factor Authentication On Your Phone
Most modern tech users are all likely familiar with Multi-Factor Authentication (MFA). Many would consider this security enhancement to be absolutely essential to protecting one’s online accounts. However, some forms of MFA are more secure than others. SMS and voice MFA mechanisms tend to be some of the most... Read more...
News
image
by Nathan Ord - Sat, Oct 31, 2020
Google Project Zero Discloses Nasty Windows 0-Day Security Exploit Already In The Wild
Google’s Project Zero team, which is tasked with discovering 0-day vulnerabilities, has uncovered an exploit in the Windows kernel that can lead to sandbox escape or privilege escalation. The bug, given CVE-2020-17087, is of the buffer overflow type in the Windows Kernel Cryptography Driver (CNG.sys) and is being... Read more...
News
image
by Nathan Ord - Fri, Oct 30, 2020
Microsoft Warns Of Ongoing Zerologon Attacks On Windows PCs By Cybercriminals
One would think that once a vulnerability received ample coverage and explicit warnings that encouraged uses to patch, we might see a drop-off in attacks. That is not the case; however, as Microsoft is again reporting that the Zerologon security flaw is still being exploited in the wild. This is another succinct... Read more...
News
image
by Nathan Ord - Fri, Oct 23, 2020
Google Security Researchers Discover Zero-Day Exploit In Chrome And Chrome OS
Google’s recently released versions of Chrome and Chrome OS had a bit of an Achilles heel: a rather pesky zero-day vulnerability that could corrupt the system’s memory from the browser or OS. The bug has been given CVE-2020-15999, but has not even been given an official score yet. Google gives the exploit a "high"... Read more...
News
image
by Nathan Ord - Thu, Oct 15, 2020
BleedingTooth Linux Exploit Can Lead to Remote Code Execution Within Bluetooth Range
A new Bluetooth security vulnerability has appeared, and this time Linux is under the gun. Andy Nguyen, an information security researcher, discovered the vulnerabilities. They are collectively known as BleedingTooth, which allows for zero-click remote code execution on Linux devices within Bluetooth range. The code... Read more...
News, Videos
image
by Nathan Ord - Tue, Oct 13, 2020
Researchers Demonstrate Apple T2 Security Chip Root Access Vulnerability Via USB-C Port
Last week, a security researcher team claimed Apple’s T2 security chip onboard many Macs was vulnerable to an exploit that could not be patched. This exploit would give an attacker full root access and kernel execution privileges. Now, another group has showcased a real-world method of this attack over USB-C. Apple’s... Read more...
News, Videos
image
by Nathan Ord - Sun, Sep 20, 2020
Homeland Security Issues Urgent Windows Security Warning Over Zerologon Exploit
Earlier in the week, we reported on a dangerous exploit with Windows domain controllers called Zerologon. Now, the Cybersecurity and Infrastructure Security Agency (CISA), under the Department of Homeland Security direction, is issuing warnings about the exploit and is pushing government agencies to patch the... Read more...
News, Security
image
by Nathan Ord - Tue, Sep 15, 2020
Dangerous Zerologon Domain Controller Exploit Discovered In Windows Active Directory
Secura digital security advisors and researchers, have discovered a highly critical vulnerability with Active Directory domain controllers. Rated as a 10 of 10 on the Common Vulnerability Scoring System (CVSS), this exploit, dubbed Zerologon, allows nefarious people to take over the domain controller and execute... Read more...
News
image
by Ben Funk - Sat, Sep 12, 2020
BLURtooth Security Vulnerability Allows Hackers To Slice Through Bluetooth Encryption
These days just about everybody takes Bluetooth for granted. Manufacturers phase out useful physical ports like headset jacks in high end devices with the expectation that buyers will use Bluetooth headphones. Our cars, watches, locator tags, home theaters, and even game controllers rely on the ubiquitous short-range... Read more...
News, Security
image
by Brittany Goetting - Wed, Jul 29, 2020
BootHole GRUB2 Bootloader Security Exploit Discovered, Affects Billions Of Windows And Linux Devices
Bootloaders are an essential bit of software for almost every modern electronic device. Unfortunately, any vulnerabilities in the bootloader can open a device up to attackers. Eclypsium researchers recently discovered a buffer overflow vulnerability in the GRUB2 bootloader, nicknamed “BootHole”. This affects any... Read more...
News
image
by Brittany Goetting - Sat, Feb 15, 2020
Windows 10 Patch Tuesday Updates Bring Big Security Fixes But There's A Catch
Another Microsoft Patch Tuesday has come and gone. Ninety-nine flaws in total were addressed during this major patch. Unfortunately, the update does not provide a blanket fix for all ninety-nine issues. There are various prerequisites before some users will be able to install a patch for a secure boot... Read more...
News
image
by Brittany Goetting - Fri, Aug 16, 2019
Serious Bluetooth Security Vulnerability Could Leave Millions Of Devices Open To Attacks
Is your Bluetooth connection secure? Researchers recently discovered a Bluetooth vulnerability that could allow hackers to intercept and manipulate a user’s communications. The researchers tested and found seventeen vulnerable Bluetooth chips in devices from companies such as Intel, Apple, Lenovo, and Qualcomm. The... Read more...
News
image
by Brittany Goetting - Sun, Aug 11, 2019
Researchers Find Over 40 Windows Security Flaws In Drivers From AMD, NVIDIA, Intel And Others
Researchers recently uncovered Windows kernel security flaws that affect over 40 drivers from 20 different vendors. The vulnerabilities could give attackers access to a device's hardware and firmware. Researchers from Eclypsium shared their troubling findings this past week at the DEF CON 27 security conference in Las... Read more...
News, Security
image
by Brittany Goetting - Fri, Jun 21, 2019
Millions of Dell And Other Brand PCs Vulnerable To System Hijack Security Flaw In 3rd Party Software
Some laptop and desktop consumers may want to double-check that they have recently updated their devices. It was discovered that millions of Dell PCs as well as other brands could be vulnerable to hackers. The security flaw was caused by a 3rd party software package and affected Dell’s SupportAssist software, as well... Read more...
News, Security
image
by Brittany Goetting - Fri, May 03, 2019
Dell SupportAssist App Is Leaving Customer PCs Vulnerable To Remote Attacks
Another day, another device vulnerability. It was recently discovered that hackers are able to remotely execute code with admin privileges through a Dell SupportAssist utility vulnerability. It is believed that a “high number” of users could be impacted. American security researcher Bill Demirkapi discovered the... Read more...
News
image
by Brittany Goetting - Sat, Apr 20, 2019
Microsoft Edge Browser Permission Backdoor Can Allow Remote Attacks To Steal Data
It has been nearly a week since security researcher John Page reported that he had found an Internet Explorer XML eXternal Entity (XXE) vulnerability. A new layer of this vulnerability has been recently discovered and the implications are far more serious. A Microsoft Edge feature may threaten Internet Explorer’s... Read more...
News
image
by Brittany Goetting - Sat, Feb 09, 2019
Security Researchers Discover New Bleichenbacher TLS 1.3 Encryption Threat Vector
Is your data secure? Researchers recently discovered a new variation of the Bleichenbacher oracle attack that could threaten TLS 1.3 encryption. Seven researchers discovered that OpenSSL, Amazon s2n, MbedTLS, Apple CoreTLS, Mozilla NSS, WolfSSL, and GnuTLS utilized TLS protocols vulnerable to attacks. Google's new... Read more...
News, Security
image
by Rob Williams - Sat, Jan 19, 2019
Alarming Wi-Fi Chipset Bug A Security Risk For Millions Of Game Consoles, Laptops, Routers And Other Devices
Most of the security vulnerabilities we write about at HotHardware fortunately won't affect the vast majority of readers. Either these exploits require user interaction to kick-start, or you have to be of particular interest as a target for someone to go through the effort of executing more complex attacks against you... Read more...
News, Security
image
by Brittany Goetting - Wed, Jan 16, 2019
Millions Of Fortnite Accounts Were Exposed To Glaring Security Vulnerability Say Researchers
Hackers do not need to bust open a Drama Llama Piñata to get the best loot in Fortnite. Epic Games recently patched a vulnerability that would have granted hackers access to users’ accounts. Nefarious parties would have been able to acquire users’ in-game currency and the last four digits of their credit card. The... Read more...
News, Gaming
image
by Brittany Goetting - Sat, Dec 22, 2018
Researcher Demonstrates Facebook Worm Attack That Spams Your Wall With A Clickjack Bomb
We have all seen it on Facebook -- one of your friends “shares” a link to a new shake that will help you lose ten pounds in two days or a code to get suspiciously discounted Ray-Bans. Thankfully, most of these posts are obviously spam. Unfortunately, hackers are finding more ways to post annoying and potentially... Read more...
News, Mobile
image
by Rob Williams - Sat, May 19, 2018
Former Intel Security Head Publishes New Spectre Processor Firmware Vulnerability
New Spectre flaws have been revealed by the former head of Intel's advanced thread team, Yuriy Bulygin. This is a man who knows what he's doing, so his opinions and findings are not to be treated as fly-by-night like some others. Through his new security agency, Eclypsium (a neat name, it must be said), Bulygin posts... Read more...
News, Security
Prev 1 2 3 4 5 Next
TOP STORIES
Which New GPU Is For You?
More Results
KEEP INFORMED

Stay updated with the latest news and updates. Subscribe to our newsletter!

Subscribe Now
SITE

Home

Reviews

News

Blogs

Full Site

Sitemap

CATEGORIES

PC Components

Systems

Mobile

IT Infrastructure

Leisure

Videos

COMPANY

About

Advertise

News Tips

Contact

Privacy And Terms

HotTech

MORE

Accessibility

Shop

STAY CONNECTED

Twitter

Facebook

YouTube

RSS

As an Amazon and Howl Technologies Associate, HotHardware earns a commission from qualifying purchases made on this site. This site is intended for informational and entertainment purposes only. The contents are the views and opinion of the author and/or his associates. All products and trademarks are the property of their respective owners. Reproduction in whole or in part, in any form or medium, without express written permission of Hot Hardware, Inc. is prohibited. All content and graphical elements are Copyright © 1999 - 2025 David Altavilla and Hot Hardware, Inc.
All rights reserved. Privacy and Terms - Accessibility Commitment