• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • Daily Security Bytes
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

11 High Severity Vulnerabilities found in Nvidia Software

January 12, 2021 By Trevor Collins

Nvidia released updates to its users after security researchers and the Nvidias Product Security Team found 16 vulnerabilities in the Nvidia driver and software packages. One of the vulnerabilities found in the driver package allows for an escalation of privileges and could allow full control of the system. Drivers tend to have administrative privileges and so this creates a … [Read more...]

Zyxel Adds a Built-in User With A Easy To Find Password

January 11, 2021 By Trevor Collins

Zyxel, a firewall and AP vendor, released a firmware update to their devices that included an unexpected, built-in admin user account called "zyfwp". Folks in information security often characterize this sort of hidden and hardcoded accounts as a “backdoor” account, even though it is hard to say if the vendors who do this do so intentionally or accidentally. First found by … [Read more...]

FBI Indicates Possible Second Hack By APT29

December 18, 2020 By Trevor Collins

As news of the recent SolarWinds hack still unfolds, new information about APT29 possibly hacking a second major technology supplier could cause major disruptions. "CISA is investigating other initial access vectors in addition to the SolarWinds Orion supply chain compromise. " the CISA report reads. This statement replaces a previous statement indicating there was another … [Read more...]

XRSI May Have Lie About Gaining Root Access The Quest 2

December 11, 2020 By Trevor Collins

We recently found XRSI, through their now-removed blog site post, claiming to have root access to Oculus Quest 2, a Virtual Reality game platform. New information from a Reddit user question if XRSI gained root access and the truthfulness of their claims. Since we published their claim, we thought it appropriate to also review what the Reddit user found. User “not_xrsi” claimed … [Read more...]

FCC Again Labels ZTE A ‘National Security Threat

December 4, 2020 By Trevor Collins

  Last month, the FCC again rejected the Chinese device manufacturer ZTE’s request for its removal off of the US national security threat designation. Both ZTE and Huawei fall under this category as a possible risk of espionage. While both manufacturers deny the threat, Chinese law does allow their government to spy on users with few safeguards. "Notably, ZTE didn't … [Read more...]

Next Page »

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • SolarWinds Catch-Up
  • Don’t Fall Victim to the Most Common Wi-Fi Deployment Mistakes
  • Is EMOTET Really Gone Forever?
  • Identity Management and Risk Authentication: Core Technologies to Achieve Zero-Trust Security

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • RIPE for the Taking
  • Oldsmar Water Treatment Plant Hack
  • So Confused
  • Is EMOTET Really Gone Forever?
  • CacheFlow
View All

Search

Archives

Copyright © 2021 WatchGuard Technologies · Privacy Policy · Terms of Use