ExpressVPN Windows Client Flaw Could Expose User Information
ExpressVPN disclosed a vulnerability in its Windows desktop client that, under specific circumstances, could have permitted the leakage of user connection details.
The flaw was discovered by security researcher Adam-X through ExpressVPN’s bug bounty program and pertains to Remote Desktop Protocol (RDP) and other TCP traffic routed over port 3389.
Although the bug did not compromise encryption, it risked revealing the user’s true IP add...
ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets
SecurityWeek
3 hours ago
More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the vulnerabilities....
