Woo Payments Critical Vulnerability: What You Need to Know & How to Protect Your Online Store

Connect
Hello! I'm Steve, an independent security researcher, and analyst from Scotland, UK.

I've had an avid interest in Computers, Technology and Security since my early teens. 20 years on, and, it's a whole lot more complicated...

I've assisted Governments, Individuals and Organizations throughout the world. Including; US DOJ, NHS UK, GOV UK.

I'll often reblog infosec-related articles that I find interesting. On the RiSec website, You'll also find a variety of write-ups, tutorials and much more!
Connect

WooCommerce on the 23rd of March announced security updates to address a critical vulnerability in its WooCommerce Payments plugin, which

Read more

SmartRG Remote Code Execution: SR510n 2.6.13

Connect
Hello! I'm Steve, an independent security researcher, and analyst from Scotland, UK.

I've had an avid interest in Computers, Technology and Security since my early teens. 20 years on, and, it's a whole lot more complicated...

I've assisted Governments, Individuals and Organizations throughout the world. Including; US DOJ, NHS UK, GOV UK.

I'll often reblog infosec-related articles that I find interesting. On the RiSec website, You'll also find a variety of write-ups, tutorials and much more!
Connect

A Vulnerability was discovered in SmartRG Router, by Security Researcher Yerodin Richards,the vulnerability, an RCE (Remote code execution) affects versions

Read more

What You Should Know about the New OpenSSL Vulnerability

Just your average information security researcher from Delaware US.

TL;DR: If you use OpenSSL 3.0 or higher, prepare to upgrade to version 3.0.7 as soon as possible. The fix is

Read more

High-severity vulnerability in GitHub was susceptible to Repo Jacking

Just your average information security researcher from Delaware US.

Researchers on Wednesday reported they found a “high-severity” vulnerability in GitHub that could have let an attacker take control over

Read more

CISA Tells Organizations to Patch Linux Kernel Vulnerability Exploited by Malware

Just your average information security researcher from Delaware US.

The US Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a Linux kernel flaw to its Known Exploited Vulnerabilities

Read more

The Evolution of Vulnerability Scanning and Pentesting

Just your average information security researcher from Delaware US.

An awareness of unprotected vulnerabilities and risks is the starting point for determining the best way to align resources with

Read more

How to request a CVE: From vulnerability discovery to disclosure

Connect
Hello! I'm Steve, an independent security researcher, and analyst from Scotland, UK.

I've had an avid interest in Computers, Technology and Security since my early teens. 20 years on, and, it's a whole lot more complicated...

I've assisted Governments, Individuals and Organizations throughout the world. Including; US DOJ, NHS UK, GOV UK.

I'll often reblog infosec-related articles that I find interesting. On the RiSec website, You'll also find a variety of write-ups, tutorials and much more!
Connect

What is a CVE? A CVE, meaning Common Vulnerabilities and Exposure, is a publicly reported vulnerability in software products. Vulnerabilities

Read more

VULN: Urgent Chrome Update Patche’s New Zero-Day Vulnerability

Just your average information security researcher from Delaware US.

Google on Friday, Sept 2nd, shipped emergency fixes to address a security vulnerability in the Chrome web browser that it

Read more

Patch critical flaw in Atlassian Bitbucket Server and Data Center! (CVE-2022-36804)

Just your average information security researcher from Delaware US.

A critical vulnerability in Atlassian Bitbucket Server and Data Center (CVE-2022-36804) could be exploited by unauthorized attackers to execute malicious

Read more

PAN-OS 10.0 RCE (Remote Code Execution) Vulnerability

Connect
Hello! I'm Steve, an independent security researcher, and analyst from Scotland, UK.

I've had an avid interest in Computers, Technology and Security since my early teens. 20 years on, and, it's a whole lot more complicated...

I've assisted Governments, Individuals and Organizations throughout the world. Including; US DOJ, NHS UK, GOV UK.

I'll often reblog infosec-related articles that I find interesting. On the RiSec website, You'll also find a variety of write-ups, tutorials and much more!
Connect

A Remote Code Execution vulnerability (Authenticated) was discovered in PAN-OS 10.0 by security researcher UND3SC0N0C1D0 Suggest an edit to this

Read more