TP-Link Routers Vulnerable to Zero-Day Buffer Overflow Attack

Consumer router models allowed authenticated users to take unrestricted remote control over TL-WR940N and TL-WR941ND routers. Source link

Magento Patches Critical SQL Injection and RCE Vulnerabilities

Magento patched 37 flaws Thursday, including a stored cross-site scripting (XSS) vulnerability that could have let an attacker take over a site. Source link

Lazarus Group Widens Tactics in Cryptocurrency Attacks

MacOS users, as well as Windows, are in the cross-hairs, especially those based in South Korea. Source link

Apple iOS 12.2 Patches 51 Serious Flaws

Apple patched more than 50 flaws in iOS 12.2, including an array of bugs in Webkit and a vulnerability that allows apps to secretly listen to users. Source link

Grindr Poses National Security Risk, U.S. Gov Says

According to a report, Grindr's Chinese owners are selling the platform after concerns were raised about user data handling. Source link

Cisco Releases Flood of Patches for IOS XE, But Leaves Some Routers Open to...

The networking giant issued 27 patches impacting a wide range of its products running the ISO XE software. Source link

FTC Demands Broadband Providers Reveal Data Handling Practices

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy...

911. emergency calls, Israel, start-ups

911 callsIsrael’s Carbyne, RapidSOS partner to improve 911 callsBy Naama BarakDialing 911 in an emergency is something that we’ve all been instructed to do since childhood. And old-fashioned, simple dialing...

Cisco IOS XE Software Command Injection Vulnerability

Cisco has released free software updates that address the vulnerability described in this advisory. Customers may only install and expect support for software versions and feature sets for which they...