exploited

After Apple and Google, Mozilla Also Patches Zero-Day Exploited for Spyware Delivery

exploited, Featured, Firefox, Malware & Threats, Zero-Day /

After Apple and Google, Mozilla Also Patches Zero-Day Exploited for Spyware Delivery 13/09/2023 at 12:16 By Eduard Kovacs After Apple and Google, Mozilla has also patched an image processing-related zero-day vulnerability exploited by spyware. The post After Apple and Google, Mozilla Also Patches Zero-Day Exploited for Spyware Delivery appeared first on SecurityWeek. This article is […]

React to this headline:

Loading spinner

After Apple and Google, Mozilla Also Patches Zero-Day Exploited for Spyware Delivery Read More »

Google Patches Chrome Zero-Day Reported by Apple, Spyware Hunters

Chrome, exploited, Featured, spyware, Vulnerabilities, Zero-Day /

Google Patches Chrome Zero-Day Reported by Apple, Spyware Hunters 12/09/2023 at 12:01 By Ionut Arghire Google has released a Chrome 116 security update to patch CVE-2023-4863, the fourth Chrome zero-day vulnerability documented in 2023. The post Google Patches Chrome Zero-Day Reported by Apple, Spyware Hunters appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Google Patches Chrome Zero-Day Reported by Apple, Spyware Hunters Read More »

Recent Juniper Flaws Chained in Attacks Following PoC Exploit Publication

exploited, Juniper, Vulnerabilities /

Recent Juniper Flaws Chained in Attacks Following PoC Exploit Publication 30/08/2023 at 16:47 By Ionut Arghire Four recent vulnerabilities in the J-Web component of Junos OS have started being chained in malicious attacks after PoC exploit code was published. The post Recent Juniper Flaws Chained in Attacks Following PoC Exploit Publication appeared first on SecurityWeek.

React to this headline:

Loading spinner

Recent Juniper Flaws Chained in Attacks Following PoC Exploit Publication Read More »

DreamBus Botnet Exploiting RocketMQ Vulnerability to Delivery Cryptocurrency Miner

exploited, Malware, Malware & Threats /

DreamBus Botnet Exploiting RocketMQ Vulnerability to Delivery Cryptocurrency Miner 30/08/2023 at 14:17 By Eduard Kovacs The DreamBus botnet has resurfaced and it has been exploiting a recently patched Apache RocketMQ vulnerability to deliver a Monero miner. The post DreamBus Botnet Exploiting RocketMQ Vulnerability to Delivery Cryptocurrency Miner appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

DreamBus Botnet Exploiting RocketMQ Vulnerability to Delivery Cryptocurrency Miner Read More »

FBI: Patches for Recent Barracuda ESG Zero-Day Ineffective

Barracuda, exploited, FBI, Malware & Threats /

FBI: Patches for Recent Barracuda ESG Zero-Day Ineffective 24/08/2023 at 17:06 By Ionut Arghire The FBI says that the patches Barracuda released in May for an exploited ESG zero-day vulnerability (CVE-2023-2868) were not effective. The post FBI: Patches for Recent Barracuda ESG Zero-Day Ineffective appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

FBI: Patches for Recent Barracuda ESG Zero-Day Ineffective Read More »

Traders Targeted by Cybercriminals in Attack Exploiting WinRAR Zero-Day 

cybercrime, exploited, Malware & Threats, WinRAR, Zero-Day /

Traders Targeted by Cybercriminals in Attack Exploiting WinRAR Zero-Day  24/08/2023 at 14:21 By Eduard Kovacs A financially motivated cybercrime group has exploited a WinRAR zero-day to deliver malware to traders and steal their money. The post Traders Targeted by Cybercriminals in Attack Exploiting WinRAR Zero-Day  appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Traders Targeted by Cybercriminals in Attack Exploiting WinRAR Zero-Day  Read More »

3,000 Openfire Servers Exposed to Attacks Targeting Recent Vulnerability

exploited, Malware & Threats, Openfire, Vulnerabilities /

3,000 Openfire Servers Exposed to Attacks Targeting Recent Vulnerability 23/08/2023 at 17:19 By Ionut Arghire More than 3,000 Openfire servers are not patched against a recent vulnerability and are exposed to attacks employing a new exploit. The post 3,000 Openfire Servers Exposed to Attacks Targeting Recent Vulnerability appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

3,000 Openfire Servers Exposed to Attacks Targeting Recent Vulnerability Read More »

Exploitation of Ivanti Sentry Zero-Day Confirmed

exploited, Featured, Ivanti, Vulnerabilities, Zero-Day /

Exploitation of Ivanti Sentry Zero-Day Confirmed 23/08/2023 at 12:17 By Eduard Kovacs While initially it was unclear if the Ivanti Sentry vulnerability CVE-2023-38035 has been exploited, the vendor and CISA have now confirmed it. The post Exploitation of Ivanti Sentry Zero-Day Confirmed appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Exploitation of Ivanti Sentry Zero-Day Confirmed Read More »

CISA Warns of Another Exploited Adobe ColdFusion Vulnerability

ColdFusion, exploited, Featured, Malware & Threats, Vulnerabilities /

CISA Warns of Another Exploited Adobe ColdFusion Vulnerability 22/08/2023 at 13:47 By Eduard Kovacs CISA warns that CVE-2023-26359, an Adobe ColdFusion vulnerability patched in March, has been exploited in the wild. The post CISA Warns of Another Exploited Adobe ColdFusion Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

CISA Warns of Another Exploited Adobe ColdFusion Vulnerability Read More »

Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning 

Citrix, exploited, Featured, Vulnerabilities /

Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning  17/08/2023 at 12:18 By Eduard Kovacs Exploitation of a Citrix ShareFile vulnerability tracked as CVE-2023-24489 has spiked as CISA added it to its ‘must patch’ catalog. The post Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning  appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning  Read More »

Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government

cybercrime, exploited, Featured, Ivanti, Vulnerabilities, Zero-Day /

Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government 25/07/2023 at 13:04 By Eduard Kovacs An Ivanti EPMM product zero-day vulnerability tracked as CVE-2023-35078 has been exploited in an attack aimed at the Norwegian government. The post Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government Read More »

Citrix Zero-Day Exploited Against Critical Infrastructure Organization

Citrix, exploited, Featured, Vulnerabilities, Zero-Day /

Citrix Zero-Day Exploited Against Critical Infrastructure Organization 21/07/2023 at 13:33 By Eduard Kovacs CISA says the new Citrix zero day vulnerability tracked as CVE-2023-3519 has been exploited against a critical infrastructure organization. The post Citrix Zero-Day Exploited Against Critical Infrastructure Organization appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Citrix Zero-Day Exploited Against Critical Infrastructure Organization Read More »

Adobe Releases New Patches for Exploited ColdFusion Vulnerabilities

Adobe, ColdFusion, exploited, Vulnerabilities /

Adobe Releases New Patches for Exploited ColdFusion Vulnerabilities 20/07/2023 at 12:20 By Eduard Kovacs Adobe releases a second round of patches for recent ColdFusion vulnerabilities, including flaws that have been exploited in attacks. The post Adobe Releases New Patches for Exploited ColdFusion Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Adobe Releases New Patches for Exploited ColdFusion Vulnerabilities Read More »

Two Jira Plugin Vulnerabilities in Attacker Crosshairs

exploited, Jira, Malware & Threats /

Two Jira Plugin Vulnerabilities in Attacker Crosshairs 19/07/2023 at 16:52 By Ionut Arghire Attackers are exploiting two path traversal vulnerabilities in the Stagil navigation for Jira – Menus & Themes plugin. The post Two Jira Plugin Vulnerabilities in Attacker Crosshairs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Two Jira Plugin Vulnerabilities in Attacker Crosshairs Read More »

Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned

Citrix, exploited, Vulnerabilities, Zero-Day /

Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned 19/07/2023 at 13:32 By Eduard Kovacs Citrix has patched several vulnerabilities, including CVE-2023-3519, a critical remote code execution zero-day that has been exploited in attacks. The post Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned Read More »

Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks

Adobe, ColdFusion, exploited, Featured, Vulnerabilities /

Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks 18/07/2023 at 14:19 By Eduard Kovacs At least two new Adobe ColdFusion vulnerabilities have been exploited in the wild, including one that has not been completely patched by the software giant. The post Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks Read More »

Exploitation of ColdFusion Vulnerability Reported as Adobe Patches Another Critical Flaw

Adobe, exploited, Vulnerabilities /

Exploitation of ColdFusion Vulnerability Reported as Adobe Patches Another Critical Flaw 17/07/2023 at 13:31 By Ionut Arghire Adobe patches critical code execution vulnerability in ColdFusion for which a proof-of-concept (PoC) blog exists. The post Exploitation of ColdFusion Vulnerability Reported as Adobe Patches Another Critical Flaw appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Exploitation of ColdFusion Vulnerability Reported as Adobe Patches Another Critical Flaw Read More »

Samsung Phone Flaws Added to CISA ‘Must Patch’ List Likely Exploited by Spyware Vendor

CISA, exploited, Mobile & Wireless, Samsung, Vulnerabilities /

Samsung Phone Flaws Added to CISA ‘Must Patch’ List Likely Exploited by Spyware Vendor 30/06/2023 at 16:18 By Eduard Kovacs CISA adds 6 Samsung mobile device flaws to its known exploited vulnerabilities catalog and they have likely been exploited by a spyware vendor. The post Samsung Phone Flaws Added to CISA ‘Must Patch’ List Likely

React to this headline:

Loading spinner

Samsung Phone Flaws Added to CISA ‘Must Patch’ List Likely Exploited by Spyware Vendor Read More »

Android’s June 2023 Security Update Patches Exploited Arm GPU Vulnerability

Android, exploited, Mobile & Wireless /

Android’s June 2023 Security Update Patches Exploited Arm GPU Vulnerability 07/06/2023 at 15:49 By Ionut Arghire Google’s June 2023 security update for Android patches more than 50 vulnerabilities, including an Arm Mali GPU flaw exploited by spyware vendors. The post Android’s June 2023 Security Update Patches Exploited Arm GPU Vulnerability appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Android’s June 2023 Security Update Patches Exploited Arm GPU Vulnerability Read More »

Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances

Barracuda, exploited, Vulnerabilities, Zero-Day /

Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances 25/05/2023 at 14:05 By Eduard Kovacs Barracuda Networks is warning customers about CVE-2023-2868, a zero-day exploited to hack some Email Security Gateway (ESG) appliances. The post Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances Read More »

Scroll to Top