Docker Fixed an AuthZ Bypass Flaw Leading to Privilege Escalation: CVE-2024-41110
Jul 24, 2024
Categories
Top Articles
Laravel Framework Affected by a New Critical Vulnerability (CVE-2024-40075): Patch Now
Jul 24, 2024
Suspicious Domains Exploiting the Recent CrowdStrike Outage!
Jul 20, 2024
CrowdStrike Update Causing Blue Screen of Death and Microsoft 365/Azure Outage
Jul 19, 2024
Critical Vulnerabilities in SolarWinds ARM, Serv-U, and Cisco SSM On-Prem, Secure Email Gateway Products
Jul 18, 2024
Sep 13, 2022
Vote for SOCRadar at the Computing Security Awards 2022!
Vote for SOCRadar at the Computing Security Awards 2022! SOCRadar is proud to be among the finalists in the “Threat Intelligence Award” category this year at the Computing Security Awards ...
Learn More
Sep 12, 2022
High-Severity Firmware Flaws in HP Devices Yet to Be Patched
High-Severity Firmware Flaws in HP Devices Yet to Be Patched Specific HP PC models’ BIOS has flaws that could allow arbitrary code execution, escalation of privilege, denial of service, and info...
Learn More
Sep 12, 2022
Lampion Banking Malware Reappears in WeTransfer Phishing Attacks
Lampion Banking Malware Reappears in WeTransfer Phishing Attacks Lampion malware operators use the free file-sharing platform WeTransfer to perform phishing attacks. This way, attackers can avoid secu...
Learn More
Sep 09, 2022
Patch Released for RCE Vulnerability in pfSense Firewall
Patch Released for RCE Vulnerability in pfSense Firewall A critical vulnerability has been discovered in a plugin of Netgate’s pfSense firewall. The flaw is tracked as CVE-2022-31814&n...
Learn More
Sep 08, 2022
Cisco Released Patches for Vulnerabilities Affecting Several Products
Cisco Released Patches for Vulnerabilities Affecting Several Products Three security issues impacting Cisco products were patched on Wednesday, including a high-severity vulnerability discov...
Learn More
Sep 08, 2022
Zyxel NAS Devices are Affected by a Critical RCE Vulnerability
Zyxel NAS Devices are Affected by a Critical RCE Vulnerability Zyxel has announced fixes for a severe format string issue in its network attached storage products. The Taiwanese network giant’s ...
Learn More
Sep 07, 2022
Illegal Marketplace WT1SHOP Seized After Nearly 6M Records Compromised...
Illegal Marketplace WT1SHOP Seized After Nearly 6M Records Compromised A global law enforcement operation has taken down the website and domains for WT1SHOP. WT1SHOP is an illegal marketplace often ...
Learn More
Sep 07, 2022
Mirai Variant MooBot Targets RCE Vulnerabilities in D-Link Routers
Mirai Variant MooBot Targets RCE Vulnerabilities in D-Link Routers MooBot botnet is back for new attacks. The variant of the Mirai malware started a new campaign last month to exploit critical vulnera...
Learn More
Sep 06, 2022
TikTok Denies Allegations of a 2.05 Billion Record Data Breach
TikTok Denies Allegations of a 2.05 Billion Record Data Breach Popular social media platform TikTok rejected claims that it had been compromised by threat actors who claimed to have obtained access to...
Learn More
Sep 06, 2022
QNAP Fixes Zero-Day Recently Leveraged by DeadBolt Ransomware
QNAP Fixes Zero-Day Recently Leveraged by DeadBolt Ransomware The Taiwanese company QNAP cautions customers about DeadBolt ransomware attacks upon exploiting a zero-day vulnerabili...
Learn More
Sep 05, 2022
Major Cyberattacks in Review: August 2022
Major Cyberattacks in Review: August 2022 Threat actors did not stay idle in August, and as always, they continued their attacks on small or large companies, government organizations, and critical in...
Learn More
Sep 05, 2022
Attackers Targeting Banking Credentials: American Express and Google P...
Attackers Targeting Banking Credentials: American Express and Google Play Users at Risk Phishing has changed significantly over the past ten years, and scammers now have sophisticated tools to use fak...
Learn More
Sep 02, 2022
1,800 Apps with Hardcoded AWS Credentials Show Supply Chain Risks
1,800 Apps with Hardcoded AWS Credentials Show Supply Chain Risks More than 1,800 mobile applications have hardcoded AWS credentials, according to Symantec, which has issued a warning about the p...
Learn More
Sep 01, 2022
Spyware Firm Sold Android and iOS RCE Exploit for €8 Million
Spyware Firm Sold Android and iOS RCE Exploit for €8 Million Intellexa, a spyware firm that originated in Greece, has entered the market recently. Its work is similar to Pegasus Spyware and offers RCE...
Learn More
Aug 31, 2022
Malicious Chrome Extensions Could Affect More Than 1.4 Million Users
Malicious Chrome Extensions Could Affect More Than 1.4 Million Users McAfee researchers discovered several malicious Google Chrome extensions. The total download count for the extensions is over 1.4 m...
Learn More
Aug 29, 2022
Critical RCE Vulnerability in the Atlassian Bitbucket Server and Data ...
Critical RCE Vulnerability in the Atlassian Bitbucket Server and Data Center Atlassian recently issued a security advisory to notify Bitbucket Server and Data Center users about a critical v...
Learn More
Aug 26, 2022
Twilio and MailChimp Attackers Hit 130 Organizations with Okta Phishin...
Twilio and MailChimp Attackers Hit 130 Organizations with Okta Phishing Campaign A larger phishing campaign that targeted 136 organizations and resulted in the theft of 9,931 account login ...
Learn More
Aug 26, 2022
Threat Actors Stole LastPass Source Code Through a Compromised Develop...
Threat Actors Stole LastPass Source Code Through a Compromised Developer Account On 25th August, LastPass announced a breach and stated that its source code was stolen, along with some technical infor...
Learn More
Aug 25, 2022
IBM Fixes Security Bypass Vulnerabilities Discovered in MQ Software
IBM Fixes Security Bypass Vulnerabilities Discovered in MQ Software IBM released security updates for two critical vulnerabilities in its message-oriented middleware IBM MQ. The vulnerabilities, ident...
Learn More
Aug 25, 2022
Patch Available for Important LPE Vulnerability in VMware Tools
Patch Available for Important LPE Vulnerability in VMware Tools A security flaw identified in VMware Tools could lead to local privilege escalation attacks. A remote attacker with initial access can s...
Learn More
