This article details a vulnerability in Triofox that allowed unauthenticated remote access, enabling attackers to bypass authentication and execute arbitrary code. Mandiant discovered that this flaw was exploited by a threat group, allowing them to create admin accounts and run malicious scripts. The issue has been patched in newer versions of the software.

A critical remote vulnerability has been discovered in MCP software, posing significant risks to users. The flaw allows attackers to exploit the system remotely, potentially leading to unauthorized access and data breaches. Immediate updates and patches are recommended to mitigate the threat.

Security researchers have uncovered a serious vulnerability in Unitree Go1 robot dogs, allowing unauthorized remote access to the devices and their cameras through an undocumented service called CloudSail. This flaw, attributed to poor code review practices, poses significant risks, particularly in sensitive environments, prompting experts to recommend users disconnect the devices from their networks.