17.6 C
Munich
Sunday, July 21, 2024

Vulnerabilities

CISA Warns on Known Exploited Vulnerability ‘Roundcube’

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) included a well-known vulnerability in its Known Exploited Vulnerabilities (KEV) catalog, highlighting the urgency of addressing...

FBI and CISA Issue Warning on AndroxGh0st Malware

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have issued warnings about the proliferation of the AndroxGh0st...

Over 178,000 SonicWall Firewalls Vulnerable to Exploits

Startling Discovery by Bishop Fox ResearchersA recent investigation by cybersecurity experts at Bishop Fox has uncovered a significant vulnerability in SonicWall's next-generation firewalls (NGFW)....

Hacker Group Actively Exploiting a Critical Exchange Server Vulnerability

A significant threat has emerged from an activity group known as Forest Blizzard (STRONTIUM), originating from Russia. This group has been actively exploiting a...

Exposed Kubernetes Secrets Can Lead to Supply Chain Attacks

In the ever-evolving landscape of cybersecurity, a new concern has emerged that could jeopardize the safety of numerous organizations. This issue revolves around the...

Urgent Alert: LockBit Ransomware Targets Citrix Users – Protect Your Network Now!

The recent discovery and exploitation of CVE-2023-4966, a significant vulnerability in Citrix NetScaler Gateway and ADC devices, underscores the critical importance of cybersecurity vigilance....

New PoC for Apache ActiveMQ’s Critical Flaw Unleashes a Wave of Cyber Mayhem

The exploitation of a critical security flaw in Apache ActiveMQ, identified as CVE-2023-46604 with a CVSS score of 10.0, has raised significant concerns in...

Class Action Lawsuit Targets Intel Over Handling of Downfall Vulnerability

Intel is facing a class-action lawsuit over its management of speculative execution vulnerabilities, specifically the recently disclosed Downfall attack method. Plaintiffs, represented by Bathaee...

Norway on High Alert as Cisco Zero-Days Compromise ‘Important Businesses’

In a recent security development, Norway's National Security Authority (NSM) issued a stark warning regarding the exploitation of two Cisco vulnerabilities, which have resulted...

Experts released PoC exploit code for VMware Aria Operations for Logs flaw

VMware has become aware of a potentially critical security concern surrounding VMware Aria Operations for Logs, formerly known as vRealize Log Insight. A proof-of-concept...

Vulnerability in TinyMCE Text Editor Can Allow Attacker Execute XSS Payloads

In the realm of text editors, TinyMCE has long been a popular choice, and on October 19, 2023, Tiny Technologies unveiled a significant update,...

Zero-Day Vulnerability in Cisco IOS XE Exploited in the Wild

The Zero-Day Revelation On October 16, Cisco's Talos issued a stern warning about a zero-day vulnerability lurking in the Web User Interface (Web UI)...

Latest