Patch now, as researchers will publish a proof-of-concept exploit in January 2022.
Source: Read More (Latest topics for ZDNet in Security)
You might be interested in …
[SecurityWeek] Poisoned Installers Found in SolarWinds Hackers Toolkit
The ongoing multi-vendor investigations into the SolarWinds mega-hack took another twist this week with the discovery of new malware artifacts that could be used in future supply chain attacks. read more Source: Read More (SecurityWeek RSS Feed)
Daily NCSC-FI news followup 2021-07-06
Kaseya Rules Out Supply-Chain Attack; Says VSA 0-Day Hit Its Customers Directly thehackernews.com/2021/07/kaseya-rules-out-supply-chain-attack.html While initial reports raised speculations that the ransomware gang might have gained access to Kaseya’s backend infrastructure and abused it to deploy a malicious update to VSA servers running on client premises, in a modus operandi similar to that of the devastating […]
[BleepingComputer] Peloton Bike+ vulnerability allowed complete takeover of devices
A vulnerability in the Peloton Bike+fitness machine has been fixed that could have allowed a threat actor to gain complete control over the device, including its video camera and microphone. […] Source: Read More (BleepingComputer)