Cybersecurity firm Comparitech and researcher Bob Diachenko say they’ve found a database containing the Facebook IDs, phone numbers, and names of 267 million users on the web. The database, they claim, was entirely exposed on the internet and did not require a password or any other form of authentication to access. They...
Read more
Google had to force-stop the rollout of the Chrome 79 update to Android devices over the weekend following the discovery of a destructive bug that is obliterating user data on mobile applications; unfortunately the update for Android has already been offered to 50 percent of the user base. The bug...
Read more
A critical vulnerability fixed in mid-2018 has been resurrected recently in denial-of-service and information disclosure attempts against Cisco’s appliances Adaptive Security (ASA) and Firepower. The company is issuing a warning to its customers urging them to follow recommendations for proper mitigation actions. DoS and sensitive info Tracked as CVE-2018-0296, the...
Read more
Description: Drupal has released security updates to address vulnerabilities in Drupal 7.x, 8.7.x, and 8.8.x. An attacker could exploit some of these vulnerabilities to modify data on an affected website. Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please...
Read more
Description: Microsoft has released information about CVE-2019-1491, a vulnerability in SharePoint Server. An attacker could exploit this vulnerability to obtain sensitive information. Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please see the references or vendor advisory for more...
Read more
Description: WordPress 5.3 and prior versions are affected by multiple vulnerabilities. An attacker could exploit some of these vulnerabilities to take control of an affected website. Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please see the references or...
Read more
Description: Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. Xcode 11.3 watchOS 5.3.4 watchOS 6.1.1 tvOS 13.3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra Safari 13.0.4...
Read more
Description: Intel has released security updates to address vulnerabilities in multiple products. An authenticated attacker with local access could exploit some of these vulnerabilities to gain escalation of privileges. Linux Administrative Tools for Intel Network Adapters Advisory INTEL-SA-00237 FPGA SDK for OpenCL Advisory INTEL-SA-00284 Processors Voltage Settings Modification Advisory INTEL-SA-00289 Control Center-I Advisory INTEL-SA-00299...
Read more
বর্তমান সময়ে ডিজিটাল ফরেনসিক বিষয়টা বেশ প্রচলিত একটি শব্দ। আজকের দিনে সমগ্র বিশ্বে সংঘটিত অপরাধসমূহের বিশ্লেষনে দেখা যায় অধিকাংশ অপরাধের সাথেই মোবাইল ফোন ওতপ্রোতভাবে জড়িত। অপরাধীর মোবাইল ফোন হতে অপরাধ সংশ্লিষ্ট কিছু তথ্য পাওয়াটা খুবই স্বাভাবিক বিষয়ে পরিণত হয়েছে। এমনকি কোন এক অপরাধীর মোবাইলের তথ্য বিশ্লেষন করে ঐ অপরাধের সাথে...
Read more
“রিমোট ডেস্ক/ ওয়ার্কিং” এখন বেশ প্রচলিত বিষয়। কাজের সুবিধার্থে প্রতিষ্ঠানের কর্মীরা বাহিরের যেকোনো জায়গা থেকে অফিসের কাজ করতে পারেন এবং কাজটি সম্পন্ন করতে তারা বিভিন্ন প্রকার ডিভাইস ব্যবহার করেন। কফি শপের ফ্রী ওয়াই-ফাই ব্যবহার করে অফিস ল্যাপটপে কাজ করা অথবা ব্যক্তিগত স্মার্ট ফোনটি ব্যবহার করে কোম্পানির ক্লাউড এ ফাইল অ্যাক্সেস...
Read more
