NodeStealer’s Evolution: A Growing Threat to Facebook Accounts and Beyond
Nov 22, 2024
Categories
Top Articles
Financial Software Company Finastra Investigates Recent Security Incident
Nov 21, 2024
Privilege Escalation Risks in ‘needrestart’ Utility Threaten Linux Systems; OSS-Fuzz Finds 26 Hidden Flaws
Nov 21, 2024
Apple, Oracle, and Apache Issue Critical Updates for Actively Exploited and High-Risk Vulnerabilities
Nov 20, 2024
Exploited PAN-OS Zero-Days Threaten Thousands of Firewalls (CVE-2024-0012 and CVE-2024-9474)
Nov 19, 2024
Nov 22, 2023
Atlassian Patches RCE Vulnerabilities in Bamboo & Crowd Data Cente...
Atlassian Patches RCE Vulnerabilities in Bamboo & Crowd Data Center and Server: CVE-2023-22516, CVE-2023-22521 Atlassian has urgently issued security advisories for two separate products: Bamboo D...
Learn More
Nov 17, 2023
Fortinet Reveals Critical Vulnerability in FortiSIEM Report Server (CV...
Fortinet Reveals Critical Vulnerability in FortiSIEM Report Server (CVE-2023-36553): Patch Now Fortinet, a leading cybersecurity provider, has recently issued an advisory for a critical vulnerability ...
Learn More
Nov 17, 2023
Education Security: A Critical Analysis of the K-12 Threat Landscape
Education Security: A Critical Analysis of the K-12 Threat Landscape As digital transformation reshapes the education sector, education security in K-12 schools has emerged as a crucial concern. The c...
Learn More
Nov 16, 2023
Citrix Hypervisor Security Update: Addressing CVE-2023-23583 and CVE-2...
Citrix Hypervisor Security Update: Addressing CVE-2023-23583 and CVE-2023-46835 Vulnerabilities In the dynamic field of cybersecurity, staying abreast of new vulnerabilities is crucial. The recent dis...
Learn More
Nov 16, 2023
Cyber Extortion Meets Regulatory Pressure: ALPHV's SEC Complaint Again...
Cyber Extortion Meets Regulatory Pressure: ALPHV’s SEC Complaint Against MeridianLink The ALPHV/BlackCat ransomware group, known for their vicious ransomware attacks, has recently taken a surprising a...
Learn More
Nov 16, 2023
SAP November 2023 Security Patch Day: Critical Business One Vulnerabil...
SAP November 2023 Security Patch Day: Critical Business One Vulnerability Has Been Fixed (CVE-2023-31403) SAP, a prominent enterprise software company, has unveiled three new vulnerabilities in its No...
Learn More
Nov 15, 2023
Critical CVE-2023-34060 Vulnerability in VMware Cloud Director Applian...
Critical CVE-2023-34060 Vulnerability in VMware Cloud Director Appliance: CISA Advises Immediate Patching VMware recently issued an advisory (VMSA-2023-0026) regarding a critical authentication bypass...
Learn More
Nov 15, 2023
Microsoft's November 2023 Patch Tuesday Tackles Exploited Zero-Day Vul...
Microsoft’s November 2023 Patch Tuesday Tackles Exploited Zero-Day Vulnerabilities, Now Listed in CISA KEV Microsoft recently rolled out its Patch Tuesday for November 2023, tackling a total of ...
Learn More
Nov 14, 2023
A Brief Look at SOCRadar's Saudi Arabia Threat Landscape Report
A Brief Look at SOCRadar’s Saudi Arabia Threat Landscape Report Saudi Arabia, a major player in Middle Eastern geopolitics and global economics, faces significant cybersecurity challenges. With its ra...
Learn More
Nov 13, 2023
OpenVPN Access Server Vulnerabilities: Risk of Information Exposure, D...
OpenVPN Access Server Vulnerabilities: Risk of Information Exposure, DoS, and RCE (CVE-2023-46849, CVE-2023-46850) Last week, OpenVPN Access Server, a widely-used open-source VPN solution, received an...
Learn More
Nov 10, 2023
Lessons Learned From Israel-Hamas Conflict: A Cybersecurity Perspectiv...
Lessons Learned From Israel-Hamas Conflict: A Cybersecurity Perspective The Israel-Hamas conflict, which started with the surprise attack of Hamas militants on Israeli territory on October 7, escalate...
Learn More
Nov 09, 2023
Sumo Logic Security Breach: Unauthorized Access to AWS with Stolen Cre...
Sumo Logic Security Breach: Unauthorized Access to AWS with Stolen Credentials Sumo Logic, a cybersecurity company renowned for its expertise in cloud-based log management, analytics, and insights, re...
Learn More
Nov 09, 2023
Path Traversal Leading to Compromise: SysAid On-Prem Software CVE-2023...
Path Traversal Leading to Compromise: SysAid On-Prem Software CVE-2023-47246 Vulnerability [Update] November 15, 2023: See the subheadings: “Nuclei Template Now Available, Scan for the SysAid Vulnerab...
Learn More
Nov 09, 2023
Surge in Attention Towards Critical Vulnerabilities in QNAP QTS and NA...
Surge in Attention Towards Critical Vulnerabilities in QNAP QTS and NAS Services (CVE-2023-23368, CVE-2023-23369) QNAP recently published advisories for two critical command injection vulnerabilities,...
Learn More
Nov 08, 2023
New Microsoft Exchange Zero-Day Vulnerabilities Could Lead to RCE, SSR...
New Microsoft Exchange Zero-Day Vulnerabilities Could Lead to RCE, SSRF (ZDI-23-1578, ZDI-23-1579, ZDI-23-1580, ZDI-23-1581) The discovery of four new zero-day vulnerabilities in Microsoft Exchange is...
Learn More
Nov 07, 2023
New Gootloader Variant “GootBot” Changes the Game in Malware Tactics...
New Gootloader Variant “GootBot” Changes the Game in Malware Tactics Researchers recently identified a fresh Gootloader malware variant known as “GootBot,” used in SEO poisoning attacks. T...
Learn More
Nov 02, 2023
Critical RCE Vulnerability in Apache ActiveMQ Is Targeted by HelloKitt...
Critical RCE Vulnerability in Apache ActiveMQ Is Targeted by HelloKitty Ransomware (CVE-2023-46604) [Update] December 19, 2023: “Ongoing Exploitation of Apache ActiveMQ Vulnerability: Threat Actors L...
Learn More
Oct 31, 2023
Atlassian CISO Announced: Improper Authorization Vulnerability Detecte...
Atlassian CISO Announced: Improper Authorization Vulnerability Detected on Confluence Data Center and Server (CVE-2023-22518) [Update] April 18, 2023: “Cerber Ransomware Exploits CVE-2023-22518 in Con...
Learn More
Oct 31, 2023
Dark Opinion: Doing Things Under the Rose, Proxy Data Recovery Compani...
Dark Opinion: Doing Things Under the Rose, Proxy Data Recovery Companies for Ransomware Negotiation During the pandemic, a lot of untrue stories spread around. This happened a lot after people started...
Learn More
Oct 31, 2023
New Bulletin by CISA on Rising Vulnerabilities: Apache, BIG-IP, IBM, V...
New Bulletin by CISA on Rising Vulnerabilities: Apache, BIG-IP, IBM, VMware, WordPress, and More The Cybersecurity and Infrastructure Security Agency (CISA) released a summary of new vulnerabilities w...
Learn More
