CSO Online

HP Poly VoIP vulnerability sets the stage for executive voice deepfakes

The remote code execution flaw enables root access and voice attacks on HP Poly VoIP phones, including eavesdropping and the ...
SecurityWeek

Gogs Zero-Day Exposes Servers to Remote Code Execution

Open source Git service Gogs is affected by a critical-severity zero-day vulnerability that exposes servers to remote code execution.
Dark Reading

Critical Grandstream VoIP Bug Highlights SMB Security Blind Spot

A critical security vulnerability in a Voice over Internet Protocol (VoIP) phone deployed in small and midsized businesses (SMBs), hotels, call centers, and other organizations globally has ...
TechRepublic

Threat Actors Are Exploiting Vulnerabilities Faster Than Ever

It only takes five days on average for attackers to exploit a vulnerability, according to a new report. New research by cybersecurity firm Mandiant provides eyebrow-raising statistics on the ...
TechRadar

Job seekers beware — hackers are exploiting SQL flaws to steal data on millions of victims

Millions of people looking for a new job have had their personal data stolen and put for sale on dark web chat groups after several sites were breached. Cybersecurity experts from Group-IB have ...
Ars Technica

Zyxel silently patches command-injection vulnerability with 9.8 severity rating

Hardware manufacturer Zyxel quietly released an update fixing a critical vulnerability that gives hackers the ability to control tens of thousands of firewall devices remotely. The vulnerability, ...
GitHub

Metasploit Guide Setting Module Options

use exploit/linux/postgres/postgres_payload set username administrator set password pass set rhost 192.168.123.6 set rport 5432 set database postgres set lhost 192 ...
Network World

10 essential Linux tools for network and security pros

Open source security frameworks help enterprises stay one step ahead of attackers by facilitating penetration testing and vulnerability assessments on wired and wireless networks. Picking just 10 ...