While community-hosted servers are a lot of fun, they also provide for a rather large security attack surface, as players could connect to any number of malicious servers unwittingly.

Infosec in brief The US Cybersecurity and Infrastructure Security Agency (CISA) has said two flaws in routers made by Chinese ...

An ASP.NET feature, ViewState stores the state of a webpage in a hidden HTML field, for persistence. Attackers can target the ...

Info-Stealing from the Orion Database The second bug (CVE-2021-25275) was also found in the SolarWinds Orion framework. It allows unprivileged users who can log in locally or via Remote Desktop ...

"The upshot of CVE-2025-53690 is that an enterprising threat actor somewhere has apparently been using a static ASP.NET machine key that was publicly disclosed in product docs to gain access to ...

Many hosts running popular open-source email service Exim are still open to a remote code execution bug.

A double-free bug could allow an attacker to achieve remote code execution; users encouraged to update to patched version of messaging app.

This week a zero-day vBulletin remote code execution vulnerability and exploit was publicly disclosed and is being used by bad actors to attack vBulletin forums.

Researchers from the cyber security firm Imperva say they have found the source of 90 percent of remote code execution attacks in December 2017: cryptocurrency mining malware.

Smart IoT home hubs vulnerable to remote code execution attacks IoT hubs used in homes and offices were found to be susceptible to exploit due to critical bugs in their firmware.