WordPress plugin vulnerabilities more than doubled in 2021
A closer look revealed that 7,592 WordPress plugin vulnerabilities are remotely exploitable while 4,797 have a public exploit but no CVE ID. For organizations that only rely on CVEs for mitigation prioritization, the latter means that more than 60 pe.....»»
PoC exploits for critical FortiSIEM command execution flaws released (CVE-2024-23108, CVE-2023-34992)
Horizon3.ai researches have released proof-of-concept (PoC) exploits for CVE-2024-23108 and CVE-2023-34992, vulnerabilities that allow remote, unauthenticated command execution as root on certain Fortinet FortiSIEM appliances. CVE confusion FortiSIEM.....»»
To what extent are pharmaceutical and illicit drugs contaminating city rivers?
In research published in Environmental Toxicology & Chemistry, investigators sampled water from 19 locations across the Hudson and East Rivers in 2021 and 2022 to identify and quantify the prescribed pharmaceuticals and drugs of abuse that are making.....»»
RansomLord: Open-source anti-ransomware exploit tool
RansomLord is an open-source tool that automates the creation of PE files, which are used to exploit ransomware pre-encryption. “I created RansomLord to demonstrate ransomware is not invincible, has vulnerabilities and its developers make mista.....»»
From ashes to alerts: Science helps protect Colorado travelers
In the summer of 2021, travelers in Colorado's Glenwood Canyon were safely evacuated before massive mounds of mud and rocks buried highways and destroyed bridges, thanks to a debris flow warning system developed in part by the U.S. Geological Survey......»»
The evolution of security metrics for NIST CSF 2.0
CISOs have long been spreadsheet aficionados, soaking up metrics and using them as KPIs for security progress. These metrics have traditionally measured specific systems or single indicators — vulnerabilities detected, percentage of vulnerabilities.....»»
Cybersecurity teams gear up for tougher challenges in 2024
In this Help Net Security video, Tom Gorup, VP of Security Services at Edgio, discusses the continually changing threat landscape. It is riddled with vulnerabilities that are frequently exploited and only intensify as geopolitics and state-sponsored.....»»
Washington Post: Justice Samuel Alito’s wife said upside-down American flag was ‘an international signal of distress’ in 2021
Washington Post: Justice Samuel Alito’s wife said upside-down American flag was ‘an international signal of distress’ in 2021.....»»
The Artificial Intelligence Era Faces a Threat from Directed Energy Weapons
Autonomous and AI-enabled systems increasingly rely on optical and radio frequency sensors and significant computer power. They face growing vulnerabilities from directed-energy laser and microwave weapons.....»»
Apple hires Cynthia Bowman as new VP of diversity
Apple this week announced the hiring of Cynthia Bowman, a banking veteran, as its new Vice President of Inclusion and Diversity. She’s taking over the role from Barbara Whye, who joined the company in 2021 after leaving Intel. more….....»»
Study finds sea-level rise and weather-related shocks caused Louisiana marsh to die back
In 2016, observers in the wetlands of Louisiana's Bird's Foot Delta began to note dying stands of Phragmites australis, locally known as Roseau cane. By 2021, nothing but mud flats remained in some areas where the reeds once stood......»»
Can disease-detecting dogs help save South Dakota"s bighorn sheep?
In summer 2021, Badlands National Park was home to a healthy and growing population of Rocky Mountain bighorn sheep, with approximately 300 total among the three herds. Then in August, Paul Roghair, lead biological science technician for the park, ca.....»»
AU10TIX Risk Assessment Model identifies potential vulnerabilities
AU10TIX launched a free Risk Assessment Model that enables businesses to conduct an initial assessment of their exposure to operational, security and identity fraud risk. Drawing insights from billions of transactions processed globally and years of.....»»
Study examines impacts of increased smoke on California lakes
As much as 70% of California was covered by wildfire smoke during parts of 2020 and 2021, according to a study from the University of California, Davis. The study, published in the journal Communications: Earth & Environment, combined lake-based sens.....»»
Veeam fixes auth bypass flaw in Backup Enterprise Manager (CVE-2024-29849)
Veeam has patched four vulnerabilities in Backup Enterprise Manager (VBEM), one of which (CVE-2024-29849) may allow attackers to bypass authentication and log in to its web interface as any user. With no user interaction required for remote exploitat.....»»
Apple re-launches online Education Store with expansive design refresh
Apple on Tuesday announced a new version of its online Education Store, which comes with a new design similar to the main Apple Online Store introduced in 2021. The new webpage highlights all the Apple products that students can get at a discount......»»
15 QNAP NAS bugs and one PoC disclosed, update ASAP! (CVE-2024-27130)
Researchers have found 15 vulnerabilities in QNAP’s network attached storage (NAS) devices, and have released a proof-of-concept for one: an unauthenticated stack overflow vulnerability (CVE-2024-27130) that may be leveraged for remote code exe.....»»
Sonos Roam 2 portable AirPlay speaker gets surprise release
Sonos didn't just release its first set of headphone on Tuesday, as it also doubled down with a refresh of its portable Roam speaker alongside a new app update.The updated Sonos Roam 2 travel speakerThe Sonos Roam 2 improves on its predecessor with b.....»»
South African communities vs Shell: High court victories show cultural beliefs and practices count in climate cases
When the Shell petroleum company announced in 2021 that it wanted to explore for fossil fuels off South Africa's pristine Wild Coast, Indigenous communities in the area immediately fought back through the country's courts......»»
Score a lifetime license to Microsoft Project Professional for only $20
Through May 22, you can get your hands on the Microsoft Project Professional 2021 for Windows software for just $20. TL;DR: Through May 22, navigate any project with ease with a lifetime license to Microsoft Project Professional 2021, on sale f.....»»
Create useful data visuals with Microsoft Visio Pro 2021 for $19.97
Get a lifetime license to Microsoft Visio Professional 2021 for $19.97 (reg. $249.99) when you order through May 22. TL;DR: Through May 22, make your data visually digestible with Microsoft Visio Professional 2021 for $19.97 (reg. $249.99).In m.....»»