Technology

Zyxel has released a patch to address a critical vulnerability in its firmware concerning a hardcoded undocumented secret account that could be abused by an attacker to login with administrative privileges and compromise its networking devices. The flaw, tracked as CVE-2020-29583 (CVSS score 7.8), affects version 4.60 present in wide-range of Zyxel devices, including Unified
0 Comments
Samsung Galaxy S21 battery performance has been tipped to improve over the Galaxy S20. The new flagship model is speculated to come in Snapdragon and Exynos variants (just like its predecessors) and both variants are tipped to get significant improvement in battery life. However, an earlier tipster had suggested that the Galaxy S21 — expected
0 Comments
Threat actors have been discovered distributing a new credential stealer written in AutoHotkey (AHK) scripting language as part of an ongoing campaign that started early 2020. Customers of financial institutions in the US and Canada are among the primary targets for credential exfiltration, with a specific focus on banks such as Scotiabank, Royal Bank of
0 Comments
An authentication bypass vulnerability in the SolarWinds Orion software may have been leveraged by adversaries as zero-day to deploy the SUPERNOVA malware in target environments. According to an advisory published yesterday by the CERT Coordination Center, the SolarWinds Orion API that’s used to interface with all other Orion system monitoring and management products suffers from
0 Comments
Infinix has been launching new phones at a rather fast pace. We have recently seen new models in the Hot and the Note series and now there is a new smartphone called the Infinix Zero 8i. The slightly amusing name aside, the Zero 8i packs in some impressive specifications on paper. You get a MediaTek
0 Comments
The US Cybersecurity Infrastructure and Security Agency (CISA) has warned of critical vulnerabilities in a low-level TCP/IP software library developed by Treck that, if weaponized, could allow remote attackers to run arbitrary commands and mount denial-of-service (DoS) attacks. The four flaws affect Treck TCP/IP stack version 6.0.1.67 and earlier and were reported to the company
0 Comments