Bleeping Computer

Critical Cisco bug exposes Expressway gateways to CSRF attacks

Cisco has patched several vulnerabilities affecting its Expressway Series collaboration gateways, two of them rated as critical severity and exposing vulnerable devices to cross-site request forgery ...
Searchenginejournal.com

WordPress Nested Pages Plugin High Severity Vulnerability

The U.S. National Vulnerability Database (NVD) and Wordfence published a security advisory of a high severity Cross Site Request Forgery (CSRF) vulnerability affecting the Nested Pages WordPress ...
Dark Reading

'Novidade' Exploit Changes DNS Settings in Home & Small Business Routers

A new exploit spotted by Trend Micro is designed to target small home and office (SOHO) routers, as well as consumer-grade home routers, by changing their internal domain name service (DNS) setting to ...
CSOonline

APT group Winter Vivern exploits Zimbra webmail flaw to target government entities

An APT group known in the security industry as Winter Vivern has been exploiting a vulnerability in the Zimbra Collaboration software to gain access to mailboxes from government agencies in several ...