The Hacker News — Most Popular Cyber Security, Hacking News Site: remote code execution

Microsoft Releases Patches for 60 Flaws—Two Under Active Attack

Microsoft Releases Patches for 60 Flaws—Two Under Active Attack

August 14, 2018Mohit Kumar
Get your update caps on. Just a few minutes ago Microsoft released its latest monthly Patch Tuesday update for August 2018, patching a tot...
Adobe releases important security patches for its 4 popular software

Adobe releases important security patches for its 4 popular software

August 14, 2018Mohit Kumar
Adobe has released August 2018 security patch updates for a total of 11 vulnerabilities in its products, two of which are rated as critica...
Unpatched WordPress Flaw Gives Attackers Full Control Over Your Site

Unpatched WordPress Flaw Gives Attackers Full Control Over Your Site

June 26, 2018Mohit Kumar
UPDATE— WordPress has released version 4.9.7 to finally patch this vulnerability that could allow remote attackers to gain full control ...
'Zip Slip' Vulnerability Affects Thousands of Projects Across Many Ecosystems

'Zip Slip' Vulnerability Affects Thousands of Projects Across Many Ecosystems

June 05, 2018Swati Khandelwal
Security researchers at British software firm Snyk have revealed details of a critical vulnerability that affects thousands of projects a...
Critical RCE Flaw Discovered in Blockchain-Based EOS Smart Contract System

Critical RCE Flaw Discovered in Blockchain-Based EOS Smart Contract System

May 28, 2018Swati Khandelwal
Security researchers have discovered a series of new vulnerabilities in EOS blockchain platform, one of which could allow remote hackers ...
Hackers are exploiting a new zero-day flaw in GPON routers

Hackers are exploiting a new zero-day flaw in GPON routers

May 22, 2018Mohit Kumar
Even after being aware of various active cyber attacks against the GPON Wi-Fi routers, if you haven't yet taken them off the Internet...
Another severe flaw in Signal desktop app lets hackers steal your chats in plaintext

Another severe flaw in Signal desktop app lets hackers steal your chats in plaintext

May 16, 2018Swati Khandelwal
For the second time in less than a week, users of the popular end-to-end encrypted Signal messaging app have to update their desktop appl...
Red Hat Linux DHCP Client Found Vulnerable to Command Injection Attacks

Red Hat Linux DHCP Client Found Vulnerable to Command Injection Attacks

May 15, 2018Mohit Kumar
A Google security researcher has discovered a critical remote command injection vulnerability in the DHCP client implementation of Red Ha...
Adobe Releases Critical Security Updates for Acrobat, Reader and Photoshop CC

Adobe Releases Critical Security Updates for Acrobat, Reader and Photoshop CC

May 14, 2018Mohit Kumar
Adobe has just released new versions of its Acrobat DC, Reader and Photoshop CC for Windows and macOS users that patch 48 vulnerabilities...
Simple bug could lead to RCE flaw on apps built with Electron Framework

Simple bug could lead to RCE flaw on apps built with Electron Framework

May 13, 2018Mohit Kumar
A critical remote code execution vulnerability has been discovered in the popular Electron web application framework that could allow att...
Severe Bug Discovered in Signal Messaging App for Windows and Linux

Severe Bug Discovered in Signal Messaging App for Windows and Linux

May 11, 2018Swati Khandelwal
Security researchers have discovered a severe vulnerability in the popular end-to-end encrypted Signal messaging app for Windows and Linu...
Microsoft Patches Two Zero-Day Flaws Under Active Attack

Microsoft Patches Two Zero-Day Flaws Under Active Attack

May 08, 2018Swati Khandelwal
It's time to gear up for the latest May 2018 Patch Tuesday. Microsoft has today released security patches for a total of 67 vulnera...
A Simple Tool Released to Protect Dasan GPON Routers from Remote Hacking

A Simple Tool Released to Protect Dasan GPON Routers from Remote Hacking

May 08, 2018Swati Khandelwal
Since hackers have started exploiting two recently disclosed unpatched critical vulnerabilities found in GPON home routers, security rese...
8 New Spectre-Class Vulnerabilities (Spectre-NG) Found in Intel CPUs

8 New Spectre-Class Vulnerabilities (Spectre-NG) Found in Intel CPUs

May 04, 2018Mohit Kumar
A team of security researchers has reportedly discovered a total of eight new " Spectre-class " vulnerabilities in Intel CPUs, ...
Microsoft Issues Emergency Patch For Critical Flaw In Windows Containers

Microsoft Issues Emergency Patch For Critical Flaw In Windows Containers

May 02, 2018Swati Khandelwal
Just a few days prior to its monthly patch release, Microsoft released an emergency patch for a critical vulnerability in the Windows Hos...
Faulty Patch for Oracle WebLogic Flaw Opens Updated Servers to Hackers Again

Faulty Patch for Oracle WebLogic Flaw Opens Updated Servers to Hackers Again

April 30, 2018Swati Khandelwal
Earlier this month, Oracle patched a highly critical Java deserialization remote code execution vulnerability in its WebLogic Server com...
Third Critical Drupal Flaw Discovered—Patch Your Sites Immediately

Third Critical Drupal Flaw Discovered—Patch Your Sites Immediately

April 25, 2018Mohit Kumar
Damn! You have to update your Drupal websites. Yes, of course once again—literally it’s the third time in last 30 days. As notified ...
Critical Unpatched RCE Flaw Disclosed in LG Network Storage Devices

Critical Unpatched RCE Flaw Disclosed in LG Network Storage Devices

April 18, 2018Mohit Kumar
If you have installed a network-attached storage device manufactured by LG Electronics, you should take it down immediately, read this ar...
Warning: Your Windows PC Can Get Hacked by Just Visiting a Site

Warning: Your Windows PC Can Get Hacked by Just Visiting a Site

April 10, 2018Mohit Kumar
Can you get hacked just by clicking on a malicious link or opening a website? — YES . Microsoft has just released its April month's...
Critical Code Execution Flaw Found in CyberArk Enterprise Password Vault

Critical Code Execution Flaw Found in CyberArk Enterprise Password Vault

April 09, 2018Mohit Kumar
A critical remote code execution vulnerability has been discovered in CyberArk Enterprise Password Vault application that could allow an...