Internet can easily be disrupted due to an old design flaw
A design flaw in security extensions on the network protocol allows hackers to cut off large parts of the world from the internet. Researchers clarified the danger with the development of a KeyTrap attack that requires only a single DNS packet.
The network protocol contains an easily exploitabl... Read more
More than 178,000 SonicWall firewalls vulnerable to simple DoS attack
More than 178,000 SonicWall firewalls are vulnerable to Denial of Service (DoS) and Remote Code Execution (RCE) attacks due to two vulnerabilities. The discovery was made by Bishop Fox security experts.
According to Bishop Fox, SonicWall's more than 178,000 next-generation Series 6 and 7 firewal... Read more
Microsoft urges upgrade to 2023 version Perforce Helix Core Server
Security specialists at Microsoft have discovered four critical vulnerabilities in the Perforce Helix Core Server source code management platform during a routine audit. The vulnerabilities let hackers run code remotely or cause Denial of Service (DoS) problems.
Microsoft security researchers di... Read more
Microsoft discovers vulnerabilities that could bring down a power plant
Microsoft researchers have discovered fifteen vulnerabilities in the CODESYS V3 software development kit. After several steps, it is possible for malicious actors to carry out a denial-of-service attack, even if it is difficult to accomplish.
The CODESYS tool handles industrial automation and is... Read more
Researchers find DoS vulnerabilities in Rust Hyper
The JFrog Security Research team has discovered and disclosed multiple DoS (Denial of Service) vulnerabilities in popular Rust projects such as Axum, Salvo and conduit-hyper.
In a recent blog post, JFrog says that all vulnerabilities stem from the same root cause, namely developers failing to se... Read more
Google Cloud Armor adds rate limiting to combat DDoS attacks
In light of recent attacks against cloud-based users, Google added new capabilities to Cloud Armor.
In a recent blog post, Google stated that modern cyberattacks use increasingly comprehensive techniques like volumetric floods, bot-based attacks, API abuse and DDoS attacks.
Google Cloud Armor... Read more
New vulnerabilities potentially expose millions of IoT devices
Millions of IoT (Internet of Things) devices have security vulnerabilities that could allow cybercriminals to knock devices offline or control them remotely. The problem with this is that it opens the door to gain wider access to bigger networks.
Nine major vulnerabilities are affecting four TCP... Read more
Cisco warns of error in password management system NAE
An error in the password management system of Cisco's Network Assurance Engine (NAE) causes attackers to disable a NAE server and cause a denial of service (DoS). The error has now been fixed and Cisco advises users to install the update with the fix, reports ZDNet.
NAE is an important network manag... Read more