Vulnerabilities & Exploits

Attackers can extract messages from encrypted emails using the eFail attack, which exploits known vulnerabilities. Several of the most widely used email clients are affected.

Equifax submitted a report outlining the extent of the 2017 data breach of their systems, stating that hackers stole approximately 2.4 million PII and document scans.

Just a few months after Spectre and Meltdown, researchers discovered a new set of vulnerabilities in Intel chips called Spectre New Generation.

Security researchers discovered an RCE vulnerability in more than a million home fiber routers.

Twitter announced that a bug in their system may have exposed user passwords internally and urged all subscribers to change their account passwords.

A flaw in medical devices’ WPA2 protocol may be exploited to change patients’ records and expose their personal information.

Researchers found a design flaw in Alexa that can be exploited to eavesdrop and transcribe to steal all sensitive information heard.

An audit of source codes in certain web applications found that 85 percent contained vulnerabilities, with finance and banking-related web applications the most susceptible.

Android mobile apps reusing advertising SDKs still using HTTP protocol risk exposing unencrypted user personal information, security researchers warned at the RSA Conference.