NodeStealer’s Evolution: A Growing Threat to Facebook Accounts and Beyond
Nov 22, 2024
Categories
Top Articles
Financial Software Company Finastra Investigates Recent Security Incident
Nov 21, 2024
Privilege Escalation Risks in ‘needrestart’ Utility Threaten Linux Systems; OSS-Fuzz Finds 26 Hidden Flaws
Nov 21, 2024
Apple, Oracle, and Apache Issue Critical Updates for Actively Exploited and High-Risk Vulnerabilities
Nov 20, 2024
Exploited PAN-OS Zero-Days Threaten Thousands of Firewalls (CVE-2024-0012 and CVE-2024-9474)
Nov 19, 2024
Feb 22, 2024
Shadow Ops Exposed: Inside the Leak of China's i-Soon Cyber Espionage ...
Shadow Ops Exposed: Inside the Leak of China’s i-Soon Cyber Espionage Empire Chinese authorities, law enforcement agencies, cybersecurity researchers, and a whole lot of other people are investi...
Learn More
Feb 21, 2024
Critical Vulnerabilities in ConnectWise ScreenConnect, PostgreSQL JDBC...
Critical Vulnerabilities in ConnectWise ScreenConnect, PostgreSQL JDBC, and VMware EAP (CVE-2024-1709, CVE-2024-1597, CVE-2024-22245) [Update] March 5, 2024: “Kimsuky Takes Advantage of ScreenConnect ...
Learn More
Feb 21, 2024
Weekly Vulnerability Summary by CISA – February 12, 2024; New ICS Advi...
Weekly Vulnerability Summary by CISA – February 12, 2024; New ICS Advisories The Cybersecurity and Infrastructure Security Agency (CISA) has once again issued a summary of the latest vulnerabilities. ...
Learn More
Feb 20, 2024
Multiple Zero-Day and RCE Vulnerabilities Aboard: AutoCAD, SolarWinds ...
Multiple Zero-Day and RCE Vulnerabilities Aboard: AutoCAD, SolarWinds ARM, Bricks Builder Under Risk The Zero Day Initiative (ZDI) has reported several vulnerabilities affecting Autodesk AutoCAD; thes...
Learn More
Feb 20, 2024
International Authorities Strike Blow Against LockBit Ransomware: Oper...
International Authorities Strike Blow Against LockBit Ransomware: Operation Cronos [Update] October 1, 2024: “New Arrests and Infrastructure Seizures” [Update] June 6, 2024: “FBI Offers +7,000 LockBit...
Learn More
Feb 15, 2024
Sensitive Information Belonging to BMW Exposed Due to Misconfigured Cl...
Sensitive Information Belonging to BMW Exposed Due to Misconfigured Cloud Bucket A recent event involving a misconfigured cloud storage bucket owned by BMW has highlighted the crucial role of cloud se...
Learn More
Feb 15, 2024
CISA Highlights Critical Adobe Security Updates for Acrobat, Magento, ...
CISA Highlights Critical Adobe Security Updates for Acrobat, Magento, and More (CVE-2024-20738, CVE-2024-20719, CVE-2024-20720) [Update] April 6, 2024: “Threat Actors Exploit CVE-2024-20720 in Magento...
Learn More
Feb 14, 2024
Zoom Addressed Seven Vulnerabilities Across Windows, iOS, and Android,...
Zoom Addressed Seven Vulnerabilities Across Windows, iOS, and Android, Including One Critical (CVE-2024-24691) Zoom, the well-known video conferencing platform, patched 7 security vulnerabilities in a...
Learn More
Feb 14, 2024
Pipeline to Peril: Unpacking the ALPHV Attack on Trans-Northern
Pipeline to Peril: Unpacking the ALPHV Attack on Trans-Northern [Update] February 16, 2024: “US State Department’s Reward for Information on ALPHV/BlackCat Ransomware” In the ever-evolving lands...
Learn More
Feb 14, 2024
Microsoft’s February 2024 Patch Tuesday Highlights: CVE-2024-21412 and...
Microsoft’s February 2024 Patch Tuesday Highlights: CVE-2024-21412 and CVE-2024-21351 Under Exploitation [Update] February 29, 2024: “Details and PoC Exploit for CVE-2024-21338” [Update] February 29, ...
Learn More
Feb 12, 2024
Major Cyber Attacks in Review: January 2024
Major Cyber Attacks in Review: January 2024 As January 2024 dawned, the digital atmosphere braced itself for another year’s cybersecurity challenges. Throughout the month, organizations experien...
Learn More
Feb 09, 2024
RCEs in FortiOS SSL VPN, ‘shim’; Latest Ivanti Flaw Possibly Exploited...
RCEs in FortiOS SSL VPN, ‘shim’; Latest Ivanti Flaw Possibly Exploited (CVE-2024-21762, CVE-2023-40547, CVE-2024-22024) [Update] March 20, 2024: “Technical Documentation and Detailed Exploit Code on C...
Learn More
Feb 09, 2024
Retrospective – SOCRadar in 2023
Retrospective – SOCRadar in 2023 2023 has been a year we left behind with bitter and sweet memories. Although it will leave its mark on the long journey of humanity as a year marked by natural disaste...
Learn More
Feb 08, 2024
Cisco Fixed Critical CSRF Flaws in Expressway Gateways (CVE-2024-20252...
Cisco Fixed Critical CSRF Flaws in Expressway Gateways (CVE-2024-20252 and CVE-2024-20254) Cisco patched multiple security vulnerabilities, including critical ones, affecting its Expressway Series gat...
Learn More
Feb 07, 2024
Critical JetBrains TeamCity Authentication Bypass (CVE-2024-23917); CI...
Critical JetBrains TeamCity Authentication Bypass (CVE-2024-23917); CISA Adds Chrome Type Confusion to KEV (CVE-2023-4762) JetBrains recently discovered a critical authentication bypass vulnerability ...
Learn More
Feb 06, 2024
Latest Vulnerabilities in FortiSIEM, Oracle WebLogic, Apache Tomcat: C...
Latest Vulnerabilities in FortiSIEM, Oracle WebLogic, Apache Tomcat: CVE-2024-23108, CVE-2024-23109, CVE-2024-20931, CVE-2024-21733 [Update] May 29, 2024: “PoC Exploit for Critical FortiSIEM Vulnerabi...
Learn More
Feb 06, 2024
Barracuda Disclosed Critical Vulnerabilities in WAF, Affecting File Up...
Barracuda Disclosed Critical Vulnerabilities in WAF, Affecting File Upload and JSON Protection Barracuda recently issued a security advisory confirming the presence of 7 security vulnerabilities, rang...
Learn More
Feb 05, 2024
AnyDesk Production Server Breach and Dark Web Sale of 18,000 Accounts
AnyDesk Production Server Breach and Dark Web Sale of 18,000 Accounts AnyDesk, a prominent remote desktop software provider, reported a security breach affecting its production systems on February 2, ...
Learn More
Feb 05, 2024
Latest Critical Vulnerabilities in Juniper Secure Analytics and Mastod...
Latest Critical Vulnerabilities in Juniper Secure Analytics and Mastodon: CVE-2023-37920, CVE-2021-4048, CVE-2024-23832 The latest serious issues demanding attention include severe vulnerabilities fou...
Learn More
Feb 02, 2024
Severe Vulnerabilities in Moby BuildKit and OCI runc: CVE-2024-23651, ...
Severe Vulnerabilities in Moby BuildKit and OCI runc: CVE-2024-23651, CVE-2024-23652, CVE-2024-23653, CVE-2024-21626 The Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert reg...
Learn More
