bug
-
Blog
Researchers say a bug let them add fake pilots to rosters used for TSA checks
A pair of security researchers say they discovered a vulnerability in login systems for records that the Transportation Security Administration (TSA) uses to verify airline crew members at airport security checkpoints. The bug let anyone with a “basic knowledge of SQL injection” add themselves to airline rosters, potentially letting them breeze through security and into the cockpit of a commercial…
Read More » -
Blog
It looks like we’re stuck with Windows Recall: Microsoft confirms option to uninstall was just a ‘bug’
Microsoft’s controversial Windows Recall feature may not be as simple to turn off as many have hoped — and Microsoft is offering little clarity. The Recall feature was unveiled in May and met with fierce backlash. Available only on Copilot+ PCs from next month, Recall will snap constant screenshots, holding the files in a local folder where they’ll be searchable.…
Read More » -
Blog
Hackers are exploiting critical bug in LiteSpeed Cache plugin
Hackers have already started to exploit the critical severity vulnerability that affects LiteSpeed Cache, a WordPress plugin used for accelerating response times, a day after technical details become public. The security issue is tracked as CVE-2024-28000 and allows escalating privileges without authentication in all versions of the WordPress plugin up to 6.3.0.1. The vulnerability stems from a weak hash check in…
Read More » -
Blog
CISA warns critical SolarWinds RCE bug is exploited in attacks
Image: MidjourneyCISA warned on Thursday that attackers are exploiting a recently patched critical vulnerability in SolarWinds’ Web Help Desk solution for customer support. Web Help Desk (WHD) is IT help desk software widely used by large corporations, government agencies, and healthcare and education organizations worldwide to centralize, automate, and streamline help desk management tasks. Tracked as CVE-2024-28986, this Java deserialization…
Read More »