[ThreatPost] Box 2FA Bypass Opens User Accounts to Attack

A security bug in the file-sharing cloud app could have allowed attackers using stolen credentials to skate by one-time SMS code verification requirements.

Source: Read More (Threatpost)

You might be interested in …

[HackerNews] Microsoft Urges Azure Users to Update PowerShell to Patch RCE Flaw

All posts, HackerNews

Microsoft is urging Azure users to update the PowerShell command-line tool as soon as possible to protect against a critical remote code execution vulnerability impacting .NET Core. The issue, tracked as CVE-2021-26701 (CVSS score: 8.1), affects PowerShell versions 7.0 and 7.1 and have been remediated in versions 7.0.6 and 7.1.3, respectively. Windows PowerShell 5.1 isn’t impacted by the flaw. […]

Read More

[ThreatPost] Microsoft Crushes 116 Bugs, Three Actively Exploited

All posts, ThreatPost

Microsoft tackles 12 critical bugs, part of its July 2021 Patch Tuesday roundup, capping a ‘PrintNightmare’ month of headaches for system admins. Source: Read More (Threatpost)

Read More

[ZDNet] Cybersecurity: These are the most dangerous and most common software vulnerabilities to watch out for

All posts, ZDNet

Mitre releases a list of its top 25 most dangerous software weaknesses, detailing the most common vulnerabilities which can give cyber criminals the ability to access machines to steal data or cause crashes. Source: Read More (Latest topics for ZDNet in Security)

Read More