HP OMEN Gaming Hub Flaw Affects Millions of Windows Computers – Tempemail

Cybersecurity researchers on Tuesday disclosed details about a high-severity flaw in the HP OMEN driver software that impacts millions of gaming computers worldwide, leaving them open to an array of attacks. Tracked as CVE-2021-3437 (CVSS score: 7.8), the vulnerabilities could allow threat actors to escalate privileges to kernel mode without Continue Reading

Critical Bug Reported in NPM Package With Millions of Downloads Weekly – Tempemail

A widely used NPM package called ‘Pac-Resolver’ for the JavaScript programming language has been remediated with a fix for a high-severity remote code execution vulnerability that could be abused to run malicious code inside Node.js applications whenever HTTP requests are sent. The flaw, tracked as CVE-2021-23406, has a severity rating Continue Reading

New BrakTooth Flaws Leave Millions of Bluetooth-enabled Devices Vulnerable – Tempemail

A set of new security vulnerabilities has been disclosed in commercial Bluetooth stacks that could enable an adversary to execute arbitrary code and, worse, crash the devices via denial-of-service (DoS) attacks. Collectively dubbed “BrakTooth” (referring to the Norwegian word “Brak” which translates to “crash”), the 16 security weaknesses span across Continue Reading

Top 15 Vulnerabilities Attackers Exploited Millions of Times to Hack Linux Systems – Tempemail

Close to 14 million Linux-based systems are directly exposed to the Internet, making them a lucrative target for an array of real-world attacks that could result in the deployment of malicious web shells, coin miners, ransomware, and other trojans. That’s according to an in-depth look at the Linux threat landscape Continue Reading

Critical ThroughTek SDK Bug Could Let Attackers Spy On Millions of IoT Devices – Tempemail

A security vulnerability has been found affecting several versions of ThroughTek Kalay P2P Software Development Kit (SDK), which could be abused by a remote attacker to take control of an affected device and potentially lead to remote code execution. Tracked as CVE-2021-28372 (CVSS score: 9.6) and discovered by FireEye Mandiant Continue Reading

BadAlloc Flaw Affects BlackBerry QNX Used in Millions of Cars and Medical Devices – Tempemail

A major vulnerability affecting older versions of BlackBerry’s QNX Real-Time Operating System (RTOS) could allow malicious actors to cripple and gain control of a variety of products, including cars, medical, and industrial equipment. The shortcoming (CVE-2021-22156, CVSS score: 9.0) is part of a broader collection of flaws, collectively dubbed BadAlloc, Continue Reading

Hackers Exploiting New Auth Bypass Bug Affecting Millions of Arcadyan Routers – Tempemail

Unidentified threat actors are actively exploiting a critical authentication bypass vulnerability to hijack home routers as part of an effort to co-opt them to a Mirai-variant botnet used for carrying out DDoS attacks, merely two days after its public disclosure. Tracked as CVE-2021-20090 (CVSS score: 9.9), the weakness concerns a Continue Reading

Turkey’s labourers take to TikTok to show millions their harsh work conditions – video | World news- Tempemail

Workers in Turkish factories, construction sites and fields have become the unlikely stars of TikTok, revealing harsh and dangerous conditions in posts with millions of views. Turkey, ranked among the ’10 worst countries in the world for workers’, is one of TikTok’s largest user bases, with approximately 19.2 million users. Continue Reading

16-Year-Old Security Bug Affects Millions of HP, Samsung, Xerox Printers – Tempemail

Details have emerged about a high severity security vulnerability affecting a software driver used in HP, Xerox, and Samsung printers that has remained undetected since 2005. Tracked as CVE-2021-3438 (CVSS score: 8.8), the issue concerns a buffer overflow in a print driver installer package named “SSPORT.SYS” that can enable remote Continue Reading

FIN7 Supervisor Gets 7-Year Jail Term for Stealing Millions of Credit Cards – Tempemail

A Ukrainian national and a mid-​level supervisor of the hacking group known as FIN7 has been sentenced to seven years in prison for his role as a “pen tester” and perpetuating a criminal scheme that enabled the gang to compromise millions of customers debit and credit cards. Andrii Kolpakov, 33, Continue Reading