vulnerability – Page 3

Atlas VPN zero-day vulnerability leaks users’ real IP address

September 6, 2023

An Atlas VPN zero-day vulnerability affecting the Linux client leaks a user’s real IP address simply by visiting a website, writes Bleeping Computer*. Atlas VPN is a VPN product that offers a cost-effective solution based on WireGuard and supports all major operating systems. In a proof of concept exploit shared on Reddit, a researcher describes … More Atlas VPN zero-day vulnerability leaks users’ real IP address

360 Million Records Exposed in free VPN data breach

May 30, 2023

According to Cybersecurity Connect*, A non-password secured database containing over 360 million records was uncovered by cyber security researcher at vpnMentor, Jeremiah Fowler, who said the records related to a VPN data breach. 360,308,817 records were exposed, totaling 133 gigabytes of data. The types of data exposed included email addresses, original IP addresses, records of … More 360 Million Records Exposed in free VPN data breach

Warning: do not use Hive Social

December 1, 2022

According to zerforschung, one of the popular twitter alternatives which gained more than a million users in the past week is reported to suffer from a number of critical vulnerabilities. The issues reported by the authors allow any attacker to access all data, including private posts, private messages, shared media and even deleted direct messages. … More Warning: do not use Hive Social

What’s behind the record‑high number of zero days?

May 3, 2022

Organizations need to get better at mitigating threats from unknown vulnerabilities, especially as both state-backed operatives and financially-motivated cybercriminals are increasing their activity. Zero-day vulnerabilities have always had something of a special reputation in the cybersecurity space. These software bugs are exploited for attacks before the flaw is known to the software vendor and so before a … More What’s behind the record‑high number of zero days?

ESET Research discovers vulnerabilities in Lenovo consumer laptops exposing users to risk of UEFI malware installation

April 19, 2022

Exploitation of these vulnerabilities would allow attackers to deploy and successfully execute UEFI malware such as LoJax and ESPecter. UEFI threats can be extremely stealthy and dangerous. · Discovered vulnerabilities: CVE-2021-3970, CVE-2021-3971, CVE-2021-3972. ESET Research strongly advises all owners of Lenovo consumer laptops to go through the list of affected devices and update their firmware. … More ESET Research discovers vulnerabilities in Lenovo consumer laptops exposing users to risk of UEFI malware installation

ESET Ireland

ESET Ireland Official Blog

Tag: vulnerability

Atlas VPN zero-day vulnerability leaks users’ real IP address

360 Million Records Exposed in free VPN data breach

What’s behind the record‑high number of zero days?

ESET Research discovers vulnerabilities in Lenovo consumer laptops exposing users to risk of UEFI malware installation