Asus has released a crucial firmware update to address a severe vulnerability that impacts seven of its business router model. Customers are urged to promptly review their firmware status and apply the necessary updates. The flaw CVE: 2024-3080 with a CVSS score of 9.8 is an authentication bypass vulnerability that …

Proofpoint found a fake website selling tickets for the Paris 2024 Summer Olympic Games. The website, “paris24tickets[.]com,” claimed to be a secondary marketplace for sports and live event tickets. It appeared as the second sponsored search result on Google, right after the official website, when searching for “Paris 2024 tickets” …

ASUS released a new firmware update to fix a vulnerability affecting seven router models, which could be exploited by remote attackers to log in to the devices. The vulnerability CVE-2024-3080 (CVSS v3.1 score: 9.8 “critical”) is an authentication bypass flaw. It enables remote attackers without authentication to control the device. …

AWS announced new security features at its re:Inforce conference, such as identity and malware protection services. The cloud giant added passkeys to the list of supported multi-factor authentication (MFA) mechanisms for root and Identity and Access Management (IAM) users. The company also started enforcing MFA on root users, particularly AWS …

A smartphone’s IMEI (which stands for International Mobile Equipment Identity) is a unique identifier for each device, similar to a digital fingerprint. Telecom companies use it to enable network connectivity on a SIM card. Additionally, the IMEI number is used to track lost devices or criminals. However, analysis revealed that …

CISA released 20 advisories about Industrial Control Systems (ICS) on June 13, 2024. These advisories give important information about security issues, vulnerabilities, and exploits related to ICS. ICSA-24-165-01 Siemens Mendix Applications ICSA-24-165-02 Siemens SIMATIC S7-200 SMART Devices ICSA-24-165-03 Siemens TIA Administrator ICSA-24-165-04 Siemens ST7 ScadaConnect ICSA-24-165-05 Siemens SITOP UPS1600 ICSA-24-165-06 …

On a report titled “Surge on Web defacement and web application related vulnerabilities targeting Bangladesh” BGD e-GOV CIRT said, web defacement attacks and the exploitation of web application vulnerabilities are a growing trend in Bangladesh. These weaknesses can be used for phishing attacks, spreading malware, and creating backdoors for continuous …

CISA warned that criminals are pretending to be its employees in phone calls in order to trick people into sending them money. “The Cybersecurity and Infrastructure Security Agency (CISA) is aware of recent impersonation scammers claiming to represent the agency,” CISA warned on Wednesday. “As a reminder, CISA staff will …

CISA added 2 new vulnerabilities to its catalog of known exploited vulnerabilities, because they have proof that these vulnerabilities are being actively exploited. CVE-2024-4610 ARM Mali GPU Kernel Driver Use-After-Free Vulnerability:  Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver allows a …

Microsoft has released updates for 49 security vulnerabilities in its Patch Tuesday update for June. One of the fixes addresses a critical bug in Microsoft Message Queuing (MSMQ) technology that could allow remote code execution (RCE) and server takeover. The number of bugs in each vulnerability category is listed below: …