Skybox Security has announced the release of its latest Vulnerability and Threat Trends Report which analyzes the vulnerabilities, exploits and threats in play over the previous year. What stands out first from the data is the sheer volume of new vulnerabilities published in 2018.
A centralized patch management system for cloud assets is also needed, so that known critical vulnerabilities in various software components do not remain unpatched.
A Kerala-based bug bounty hunter, Sahad NK discovered a critical vulnerability in Microsoft’s login that made it possible to hack into anyone’s MS Office and Outlook account..
Attackers will exploit emerging tech
More vulnerabilities will be found in cloud infrastructure, such as containers, and weak cloud security measures will allow greater exploitation of accounts for cryptocurrency mining.
Instagram security bug
Instagram’s ‘Download Your Data’ tool accidentally put user credentials at risk. What’s particularly worrisome though, is the possibility of Instagram storing passwords in plain text.
Should you do more to protect RDP?
There are times when having a remote access service can truly add vulnerabilities to your system that you could not defend against using the defaults or best practices.
Cisco reveals vulnerability
Cisco has revealed a vulnerability within two of its software that allows hackers to cause a denial of service (DoS), which is being actively exploited.
Zero-day vulnerability in Windows 10
A security researcher unearthed a zero-day vulnerability in Microsoft Windows 10. And this one goes beyond altering system files – it actually deletes them.