Vulnerabilities

Massive Ransomware Campaign Targeting VMware ESXi Servers Worldwide

Dimitris Gkoutzamanis - February 6, 2023

The Italian National Cybersecurity Agency (ACN) has issued a warning about a large-scale ransomware campaign targeting VMware ESXi servers worldwide, including Italian systems. The...

Vulnerabilities

VMware Fixes High-Severity Privilege Escalation Flaw in Workstation

TheCISO - February 5, 2023

The Vulnerability Details VMware fixed a high-severity privilege escalation flaw, tracked as CVE-2023-20854, that impacts Workstation. An attacker can exploit the vulnerability to delete arbitrary...

Vulnerabilities

Critical Vulnerability Discovered in Jira Service Management Server and Data Center

TheCISO - February 4, 2023

A critical security vulnerability has been discovered in Jira Service Management Server and Data Center, which has been assigned the CVE identifier CVE-2023-22501 and...

Vulnerabilities

F5 BIG-IP Vulnerability: A Threat to System Stability

TheCISO - February 3, 2023

F5 Networks, a cybersecurity company, has issued a warning regarding a high-severity format string vulnerability in BIG-IP. This vulnerability has the potential to cause...

Vulnerabilities

Binwalk Security Tool Vulnerable to Path Traversal Attack

TheCISO - February 3, 2023

Binwalk, a popular Linux-based security analysis tool, is facing a security threat due to a path traversal vulnerability that could lead to remote code...

Articles

Most Organizations Still Vulnerable To The Log4j Vulnerability

Dimitris Gkoutzamanis - December 1, 2022

A study examining the scope and impact of the recent Log4j vulnerability has been conducted by Tenable and the results are extremely interesting. According to...

Vulnerabilities

“OK Google”, Patch A New Zero-Day Vulnerability

Dimitris Gkoutzamanis - November 25, 2022

Yet another Chrome "zero-day" vulnerability was patched by Google, the 8th for 2022. The tech giant released security updates to address a new zero-day vulnerability...

Vulnerabilities

Google Pixel Phone Lock Bypass

TheCISO - November 12, 2022

Security researcher David Schütz, discovered a vulnerability that could allow an attacker to unlock any Google Pixel phone without knowing its passcode! This finding...

Vulnerabilities

CSRF Vulnerability Discovered in Plesk API

TheCISO - November 12, 2022

Plesk is a very popular administration tool for web hosting and data center providers. Users usually use its web interface to administer their websites...

Vulnerabilities

Critical Vulnerabilities Affecting Citrix Gateway and ADC

TheCISO - November 9, 2022

Critical vulnerabilities have been discovered in Citrix Gateway and Citrix ADC which can allow an attacker to gain unauthorized access, perform remote desktop takeover...

Vulnerabilities

Public Exploit is Available for NSX-V, VMware Urges Customers to Upgrade

TheCISO - November 1, 2022

The critical vulnerability for NSX Data Center for vSphere(NSX-V) tracked as CVE-2021-39144 can be exploited to provide remote code execution to attackers. Public exploit is...

Vulnerabilities

Apple patches its ninth vulnerability for this year

TheCISO - October 25, 2022

Since the start of 2022, Apple has addressed nine vulnerabilities with the latest one affecting iOS and iPadOS. This Monday, Apple rolled out updates to...

1...345...7 Page 4 of 7

Latest

FTI Consulting Study Reveals Significant Communications Gaps Between CISOs and C-Suites Despite Increased Focus on Cybersecurity

April 3, 2024

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Vulnerabilities

Latest

FTI Consulting Study Reveals Significant Communications Gaps Between CISOs and C-Suites Despite Increased Focus on Cybersecurity

The “World’s Most Harmful Cyber Crime Group” Taken Down

The Canadian Clampdown on Flipper Zero: A Move Against Auto Theft

CISA Warns on Known Exploited Vulnerability ‘Roundcube’

HPE Hacked by Russian Group Following Microsoft Email Breach

SEC Blames SIM Swapping and Lack of MFA for X Account Hijacking

FCC Expands Data Breach Notification Requirements

CISA’s Pre-Ransomware Alerts Saved Organizations Millions in Damages

Microsoft Executive Emails Hacked by Russian Intelligence Group

Top Impersonated Brands in Phishing

Sophisticated Email Spoofing Attack Results in Multi-Million Dollar Theft from US Health Department

FBI and CISA Issue Warning on AndroxGh0st Malware

Over 178,000 SonicWall Firewalls Vulnerable to Exploits

Ransomware Attacks in 2023: A Startling Surge and the Ongoing Battle

How the LockBit Ransomware Compromised the World’s Largest Financial Institution

Hacker Group Actively Exploiting a Critical Exchange Server Vulnerability

Understanding the Escalating Threat of DoS Attacks: Insights from the ENISA Threat Landscape Report

Okta Security Breach More Serious Than Initially Estimated

Exposed: How Romance Scams Steal Millions in Crypto

Hamas-linked APT Group Targeting Israeli Entities

Menu

Popular Categories