Sign-up

VARIoT news about IoT security

Gardyn IoT Credential Risk: Secrets Exposed Through HTTP Provisioning | Windows Forum

Trust: 3.5

Fetched: Feb. 25, 2026, 9:35 a.m., Published: Feb. 24, 2026, 6:28 p.m.
 Vulnerabilities: command injection, device impersonation
Affected productsExternal IDs

Saiba mais sobre o Android Device Configuration Service - Ajuda do Android

Trust: 3.0

Fetched: Feb. 25, 2026, 9:21 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Manage your Google Settings - Google Account Help

Trust: 3.0

Fetched: Feb. 25, 2026, 9:19 a.m., Published: -
 Vulnerabilities: -
Affected productsExternal IDs
vendor: google model: android

Apple issues a critical software update for iPhone. Install it now! | Blaze Media

Trust: 3.5

Fetched: Feb. 24, 2026, 9:40 a.m., Published: Feb. 23, 2026, 6 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: apple model: iphone
vendor: apple model: ipad
vendor: apple model: software update
vendor: google model: android
db: NVD ids: CVE-2026-20700

Cyber Threats Intensify Across Global Health Sector

Trust: 3.75

Fetched: Feb. 24, 2026, 9:40 a.m., Published: Feb. 17, 2026, midnight
 Vulnerabilities: -
Affected productsExternal IDs
vendor: trend model: security

Telegram Android App Vulnerability Exposed | Luis Oria Seidel posted on the topic | LinkedIn

Trust: 3.0

Fetched: Feb. 24, 2026, 9:39 a.m., Published: -
 Vulnerabilities: authentication bypass
Affected productsExternal IDs

DJI Romo robovac bug reportedly exposed thousands of live home feeds

Trust: 3.25

Fetched: Feb. 24, 2026, 9:38 a.m., Published: Feb. 17, 2026, 8:07 a.m.
 Vulnerabilities: -
Affected productsExternal IDs

Router Vulnerability Exposed: Cybersecurity Risks Revealed | Enigma Security posted on the topic | LinkedIn

Trust: 4.25

Fetched: Feb. 24, 2026, 9:36 a.m., Published: -
 Vulnerabilities: buffer overflow
Affected productsExternal IDs
vendor: tp-link model: routers

U.S. CISA adds a flaw in BeyondTrust RS and PRA to its Known Exploited Vulnerabilities catalog

Trust: 5.5

Fetched: Feb. 24, 2026, 9:29 a.m., Published: Feb. 14, 2026, 3:54 p.m.
 Vulnerabilities: service disruption, authentication bypass, code execution
Affected productsExternal IDs
vendor: sonicwall model: remote access
db: NVD ids: CVE-2026-1731, CVE-2026-24858

Making technology work for business - Australia - Computerworld

Trust: 3.25

Fetched: Feb. 24, 2026, 9:29 a.m., Published: Feb. 21, 2026, 8:26 p.m.
 Vulnerabilities: -
Affected productsExternal IDs
vendor: canary model: canary

Fortinet’s latest zero-day vulnerability carries frustrating familiarities for customers | CyberScoop

Trust: 4.75

Fetched: Feb. 24, 2026, 9:29 a.m., Published: Jan. 28, 2026, 10:33 p.m.
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
vendor: fortigate model: fortios
db: NVD ids: CVE-2026-24858, CVE-2025-59718

VShell and SparkRAT Observed in Exploitation of BeyondTrust Critical Vulnerability (CVE-2026-1731)

Trust: 4.25

Fetched: Feb. 24, 2026, 9:28 a.m., Published: Feb. 19, 2026, 3 p.m.
 Vulnerabilities: command injection, command execution, service disruption...
Affected productsExternal IDs
vendor: palo model: networks
vendor: palo alto networks model: networks
db: NVD ids: CVE-2024-12356, CVE-2026-1731

IIoT Security for Steel Plants: Secure Your Connected Devices

Trust: 4.25

Fetched: Feb. 24, 2026, 9:27 a.m., Published: March 2, 2026, midnight
 Vulnerabilities: command injection, default credentials
Affected productsExternal IDs
vendor: rapid model: scada

Moxa Switches Vulnerability Enables Unauthorized Access through Authentication Bypass

Trust: 5.0

Fetched: Feb. 24, 2026, 9:26 a.m., Published: Feb. 5, 2026, 12:38 p.m.
 Vulnerabilities: authentication bypass
Affected productsExternal IDs
db: NVD ids: CVE-2024-12297, CVE-2024-122979

Microsoft confirms 8.8-rated security issue in Windows 11 Notepad due to modernization efforts, Patch Tuesday fix rolling out

Trust: 3.5

Fetched: Feb. 24, 2026, 9:26 a.m., Published: Feb. 11, 2026, 10:30 p.m.
 Vulnerabilities: command injection, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2026-20841

Ivanti provides temporary patches for actively exploited EPMM zero-day (CVE-2026-1281) - Help Net Security

Trust: 3.75

Fetched: Feb. 24, 2026, 9:25 a.m., Published: Jan. 30, 2026, 2:52 a.m.
 Vulnerabilities: code execution, code injection
Affected productsExternal IDs
db: NVD ids: CVE-2026-1340, CVE-2026-1281

AI-Driven Attack Targets Over 600 FortiGate Devices Across 55 Nations - DualMedia Innovation News

Trust: 3.75

Fetched: Feb. 24, 2026, 9:25 a.m., Published: Feb. 23, 2026, 1:02 p.m.
 Vulnerabilities: password guessing
Affected productsExternal IDs
db: NVD ids: CVE-2024-40711, CVE-2023-27532

TP-Link Archer Vulnerability Let Attackers Take Control Over the Router

Trust: 5.75

Fetched: Feb. 24, 2026, 9:25 a.m., Published: Jan. 28, 2026, 4:15 p.m.
 Vulnerabilities: command execution, command injection
Affected productsExternal IDs
vendor: tp-link model: routers
db: NVD ids: CVE-2025-147568, CVE-2025-14756

OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link

Trust: 3.75

Fetched: Feb. 24, 2026, 9:24 a.m., Published: Feb. 2, 2026, 4:28 p.m.
 Vulnerabilities: command execution, arbitrary command execution, code execution
Affected productsExternal IDs
db: NVD ids: CVE-2026-25253

Update Canonical Ubuntu Server: USN-8053-1: libvpx vulnerability

Trust: 4.25

Fetched: Feb. 24, 2026, 9:24 a.m., Published: Jan. 24, 8053, midnight
 Vulnerabilities: denial of service
Affected productsExternal IDs
vendor: canonical model: ubuntu