OpenMetadata Vulnerabilities Allow Attackers to Cryptomine in Kubernetes Environments
Apr 18, 2024
Categories
Top Articles
CVE-2024-21006 in Oracle WebLogic Server – Oracle’s April 2024 Update Brings 441 New Security Patches
Apr 17, 2024
Committing a Sin, OpenJS Foundation and XZ Utils Incidents: Lessons in Open Source Security
Apr 17, 2024
Ivanti Avalanche Received an Update for Over Two Dozen Vulnerabilities (CVE-2024-24996, CVE-2024-29204…)
Apr 17, 2024
Major Cyber Attacks in Review: March 2024
Apr 16, 2024
Jan 17, 2024
Zero-Day Vulnerabilities in Citrix Netscaler ADC and Gateway & Google ...
Zero-Day Vulnerabilities in Citrix Netscaler ADC and Gateway & Google Chrome: CVE-2023-6548, CVE-2023-6549, and CVE-2024-0519 [Update] January 18, 2024: “CISA Lists Zero-Day Vulnerabilities in Net...
Learn More
Jan 17, 2024
Major Cyber Attacks in Review: December 2023
Major Cyber Attacks in Review: December 2023 In December 2023, the digital world witnessed a series of significant cyberattacks that echoed across multiple industries. These incidents, some of them sp...
Learn More
Jan 16, 2024
Patches Available for a Critical Vulnerability in VMware Aria Automati...
Patches Available for a Critical Vulnerability in VMware Aria Automation: CVE-2023-34063 [Update] January 18, 2024: “CISA Issued an Alert for CVE-2023-34063 in VMware Aria Automation” VMware has addre...
Learn More
Jan 15, 2024
Latest Critical Vulnerabilities Affecting GitLab, Apple’s Magic Keyboa...
Latest Critical Vulnerabilities Affecting GitLab, Apple’s Magic Keyboard, and Juniper Networks’ Junos OS [Update] January 25, 2024: “Over 5,300 GitLab Instances Are Vulnerable to Exploitation” The dig...
Learn More
Jan 15, 2024
EU’s Proposed Reform: Article 45.2 May Allow Member Countries to Decry...
EU’s Proposed Reform: Article 45.2 May Allow Member Countries to Decrypt Traffic The European Union‘s proposed legal reforms have sparked a significant debate among cybersecurity experts, industry org...
Learn More
Jan 12, 2024
CISA Issues ICS Advisories for Vulnerabilities Affecting Siemens, Schn...
CISA Issues ICS Advisories for Vulnerabilities Affecting Siemens, Schneider Electric, Rapid Software, Horner Automation CISA has released new advisories concerning security vulnerabilities in Industri...
Learn More
Jan 11, 2024
Attackers Exploit Ivanti Connect Secure Zero-Day Vulnerabilities to De...
Attackers Exploit Ivanti Connect Secure Zero-Day Vulnerabilities to Deploy Webshells (CVE-2023-46805, CVE-2024-21887) [Update] January 31, 2024: Read under “Ivanti Made Patches Available for Connect S...
Learn More
Jan 11, 2024
High Severity Vulnerability in Cisco Unity Connection Could Enable Roo...
High Severity Vulnerability in Cisco Unity Connection Could Enable Root Privileges (CVE-2024-20272) Cisco has resolved a high-severity security vulnerability in Unity Connection that opens the door fo...
Learn More
Jan 10, 2024
CISA Warned of Critical Fortinet Vulnerability (CVE-2023-44250) and Is...
CISA Warned of Critical Fortinet Vulnerability (CVE-2023-44250) and Issued a New ICS Advisory In a recent alert, the Cybersecurity and Infrastructure Security Agency (CISA) has urged users and adminis...
Learn More
Jan 10, 2024
January 2024 – Microsoft Patch Tuesday & SAP Security Patch Day Highli...
January 2024 – Microsoft Patch Tuesday & SAP Security Patch Day Highlights Microsoft has released its January 2024 Patch Tuesday, addressing a total of 48 security vulnerabilities, with two classi...
Learn More
Jan 05, 2024
Your Data is Secure and Private with SOC 2 Type 2 Compliant SOCRadar
Your Data is Secure and Private with SOC 2 Type 2 Compliant SOCRadar We are pleased to share an important update regarding the security and privacy of your data with SOCRadar. Upholding the highest da...
Learn More
Jan 05, 2024
Ivanti Released a Patch in Endpoint Manager Solution (EPM) for a Criti...
Ivanti Released a Patch in Endpoint Manager Solution (EPM) for a Critical Vulnerability, CVE-2023-39336 Ivanti has addressed a critical vulnerability in its Endpoint Manager (EPM) solution, identified...
Learn More
Jan 05, 2024
CISA Issues ICS Advisories for Vulnerabilities Affecting Rockwell Auto...
CISA Issues ICS Advisories for Vulnerabilities Affecting Rockwell Automation, Mitsubishi Electric, and Unitronics CISA has issued three advisories on Industrial Control Systems (ICS), addressing the l...
Learn More
Jan 03, 2024
CISA Issues Alert for Juniper Secure Analytics Vulnerabilities (CVE-20...
CISA Issues Alert for Juniper Secure Analytics Vulnerabilities (CVE-2023-46604, CVE-2023-40787, CVE-2023-44487, and More) In a recent alert, the Cybersecurity and Infrastructure Security Agency (C...
Learn More
Dec 29, 2023
Misconfigurations in Google Kubernetes Engine (GKE) Lead to a Privileg...
Misconfigurations in Google Kubernetes Engine (GKE) Lead to a Privilege Escalation Exploit Chain A recent Unit 42 investigation revealed a dual privilege escalation chain impacting Google Kubernetes E...
Learn More
Dec 29, 2023
Operation Triangulation: ‘’Most Sophisticated Attack Chain Ever Seen"...
Operation Triangulation: ‘’Most Sophisticated Attack Chain Ever Seen” The cyber security landscape has recently been abuzz with discussions about Operation Triangulation, a sophisticated and mul...
Learn More
Dec 28, 2023
Excel's Blind Spot: The Strategic Deployment of Agent Tesla Malware by...
Excel’s Blind Spot: The Strategic Deployment of Agent Tesla Malware by Cyberattackers In the ever-evolving landscape of cyber threats, a notable trend has emerged: the exploitation of a longstan...
Learn More
Dec 28, 2023
Latest Zero-Day Vulnerabilities: UNC4841 Targets Barracuda ESG with CV...
Latest Zero-Day Vulnerabilities: UNC4841 Targets Barracuda ESG with CVE-2023-7102, Apache OFBiz Authentication Bypass (CVE-2023-51467) The UNC4841 group, linked to China, is targeting Barracuda Email ...
Learn More
Dec 27, 2023
Weekly Vulnerability Summary by CISA: Ivanti Avalanche, Apache Dubbo, ...
Weekly Vulnerability Summary by CISA: Ivanti Avalanche, Apache Dubbo, OpenSSH, and More The Cybersecurity and Infrastructure Security Agency (CISA) has released a new vulnerability summary for the lat...
Learn More
Dec 26, 2023
Challenge of Protecting PII, Hunters Become the Hunt: OpenAI Vulnerabi...
Challenge of Protecting PII, Hunters Become the Hunt: OpenAI Vulnerability, Blackmailing of Bounty Hunters A paradox emerges: those who protect us from cyber threats are themselves becoming the hunted...
Learn More
