Month: August 2023

Another OpenSSH RCE Vulnerability – i.e. Patch Now!

by

Linuxsecurity.com has the story RCE means Remote Code Execution which means that the attacker does not need an account to make a successful attack.  This vulnerability is rated 9.8 out of 10 thus it is very high. “Two critical remote code execution (RCE) vulnerabilities have been found in OpenSSH (CVE-2023-28531 and CVE-2023-38408). Because these bugs … Read more

Another Phishing Attack Angle

by

  Hackers have found ways to add notification code behind the website code.  Thus if you say Allow in the notification window: then eventually a ‘bad’ notification comes up: Here is an example of ‘bad’ or hacker initiated notifications:   Here is where cybernews.com had the story and the investigation by cybernews showed the details … Read more