Security researcher, Peter Geissler, discovered a zero-day remote code execution vulnerability that could potentially affect over 100 Lexmark printer models. He claimed the reward for disclosing this was too low, so chose to publicly disclose the bug. Although it has since been patched, Geissler suggests this example highlights the need for improvements in vulnerability reward programs.
China-linked cyberespionage group PlushDaemon used South Korean VPN service to inject malware
A China-linked cyberespionage group known as PlushDaemon has reportedly exploited the VPN service of South Korean provider IPany to spread malware and spy on users.
