Russian Hackers Exploited 7-Zip Zero-Day Against Ukraine 2025-02-05 at 14:09 By Ionut Arghire Russian threat groups have been observed exploiting a zero-day vulnerability in 7-Zip against Ukrainian entities. The post Russian Hackers Exploited 7-Zip Zero-Day Against Ukraine appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Russian Hackers Exploited 7-Zip Zero-Day Against Ukraine Read More »
CISA Issues Exploitation Warning for .NET Vulnerability 2025-02-05 at 13:06 By Eduard Kovacs CISA has added CVE-2024-29059, a flaw affecting Microsoft .NET, to its Known Exploited Vulnerabilities catalog. The post CISA Issues Exploitation Warning for .NET Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
CISA Issues Exploitation Warning for .NET Vulnerability Read More »
Zyxel Issues ‘No Patch’ Warning for Exploited Zero-Days 2025-02-05 at 12:01 By Ionut Arghire Multiple Zyxel legacy DSL CPE products are affected by exploited zero-day vulnerabilities that will not be patched. The post Zyxel Issues ‘No Patch’ Warning for Exploited Zero-Days appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Zyxel Issues ‘No Patch’ Warning for Exploited Zero-Days Read More »
Exploitation of Over 700 Vulnerabilities Came to Light in 2024 2025-02-04 at 19:34 By Ionut Arghire The number of vulnerabilities first reported as exploited surged last year amid a decrease in zero-day reports. The post Exploitation of Over 700 Vulnerabilities Came to Light in 2024 appeared first on SecurityWeek. This article is an excerpt from
Exploitation of Over 700 Vulnerabilities Came to Light in 2024 Read More »
Vulnerability Patched in Android Possibly Exploited by Forensic Tools 2025-02-04 at 13:03 By Ionut Arghire The February 2025 Android patches resolve 46 vulnerabilities, including a Linux kernel bug that has been exploited in the wild. The post Vulnerability Patched in Android Possibly Exploited by Forensic Tools appeared first on SecurityWeek. This article is an excerpt
Vulnerability Patched in Android Possibly Exploited by Forensic Tools Read More »
Aquabot Botnet Targeting Vulnerable Mitel Phones 2025-01-29 at 14:18 By Ionut Arghire The Mirai-based Aquabot botnet has been targeting a vulnerability in Mitel SIP phones for which a proof-of-concept (PoC) exploit exists. The post Aquabot Botnet Targeting Vulnerable Mitel Phones appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Aquabot Botnet Targeting Vulnerable Mitel Phones Read More »
SimpleHelp Remote Access Software Exploited in Attacks 2025-01-29 at 12:48 By Ionut Arghire Threat actors have been exploiting SimpleHelp remote access software shortly after the disclosure of three vulnerabilities. The post SimpleHelp Remote Access Software Exploited in Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
SimpleHelp Remote Access Software Exploited in Attacks Read More »
SonicWall Confirms Exploitation of New SMA Zero-Day 2025-01-28 at 13:33 By Eduard Kovacs SonicWall has confirmed that an SMA 1000 zero-day tracked as CVE-2025-23006 has been exploited in the wild. The post SonicWall Confirms Exploitation of New SMA Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
SonicWall Confirms Exploitation of New SMA Zero-Day Read More »
Apple Patches First Exploited iOS Zero-Day of 2025 2025-01-28 at 13:03 By Ionut Arghire Apple has released fixes for dozens of vulnerabilities in its mobile and desktop products, including an iOS zero-day exploited in attacks. The post Apple Patches First Exploited iOS Zero-Day of 2025 appeared first on SecurityWeek. This article is an excerpt from
Apple Patches First Exploited iOS Zero-Day of 2025 Read More »
Building Automation Protocols Increasingly Targeted in OT Attacks: Report 2025-01-27 at 16:04 By Eduard Kovacs Industrial automation protocols continue to be the most targeted in OT attacks, but building automation systems have been increasingly targeted. The post Building Automation Protocols Increasingly Targeted in OT Attacks: Report appeared first on SecurityWeek. This article is an excerpt
Building Automation Protocols Increasingly Targeted in OT Attacks: Report Read More »
CISA Warns of Old jQuery Vulnerability Linked to Chinese APT 2025-01-24 at 18:01 By Eduard Kovacs CISA has added the JQuery flaw CVE-2020-11023, previously linked to APT1, to its Known Exploited Vulnerabilities (KEV) catalog. The post CISA Warns of Old jQuery Vulnerability Linked to Chinese APT appeared first on SecurityWeek. This article is an excerpt
CISA Warns of Old jQuery Vulnerability Linked to Chinese APT Read More »
Critical Zimbra Vulnerability Exploited One Day After PoC Release 2024-10-02 at 13:31 By Ionut Arghire A critical-severity vulnerability in Zimbra has been exploited in the wild to deploy a web shell on vulnerable servers. The post Critical Zimbra Vulnerability Exploited One Day After PoC Release appeared first on SecurityWeek. This article is an excerpt from
Critical Zimbra Vulnerability Exploited One Day After PoC Release Read More »
Organizations Warned of Exploited SAP, Gpac and D-Link Vulnerabilities 2024-10-01 at 16:01 By Ionut Arghire CISA warns that years-old vulnerabilities in SAP Commerce, Gpac framework, and D-Link DIR-820 routers are exploited in the wild. The post Organizations Warned of Exploited SAP, Gpac and D-Link Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from
Organizations Warned of Exploited SAP, Gpac and D-Link Vulnerabilities Read More »
Third Recent Ivanti Vulnerability Exploited in the Wild 2024-09-25 at 14:17 By Eduard Kovacs CVE-2024-7593 is the third Ivanti product vulnerability patched in recent months that has been exploited in the wild. The post Third Recent Ivanti Vulnerability Exploited in the Wild appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed
Third Recent Ivanti Vulnerability Exploited in the Wild Read More »
Ivanti Warns of Second CSA Vulnerability Exploited in Attacks 2024-09-20 at 11:46 By Eduard Kovacs In addition to the Ivanti CSA flaw CVE-2024-8190, another vulnerability affecting the same product, tracked as CVE-2024-8963, has been exploited. The post Ivanti Warns of Second CSA Vulnerability Exploited in Attacks appeared first on SecurityWeek. This article is an excerpt
Ivanti Warns of Second CSA Vulnerability Exploited in Attacks Read More »
Recent WhatsUp Gold Vulnerabilities Possibly Exploited in Ransomware Attacks 2024-09-17 at 13:01 By Eduard Kovacs Two recently patched Progress Software WhatsUp Gold vulnerabilities may have been exploited in the wild, possibly in ransomware attacks. The post Recent WhatsUp Gold Vulnerabilities Possibly Exploited in Ransomware Attacks appeared first on SecurityWeek. This article is an excerpt from
Recent WhatsUp Gold Vulnerabilities Possibly Exploited in Ransomware Attacks Read More »
Microsoft Says Recent Windows Vulnerability Exploited as Zero-Day 2024-09-16 at 14:46 By Ionut Arghire Microsoft warns that a recently patched Windows vulnerability was exploited in the wild as a zero-day prior to July 2024. The post Microsoft Says Recent Windows Vulnerability Exploited as Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
Microsoft Says Recent Windows Vulnerability Exploited as Zero-Day Read More »
Ivanti CSA Vulnerability Exploited in Attacks Days After DIsclosure 2024-09-16 at 12:31 By Eduard Kovacs The Ivanti Cloud Service Appliance vulnerability CVE-2024-8190 has been exploited in the wild, with attacks starting just days after disclosure. The post Ivanti CSA Vulnerability Exploited in Attacks Days After DIsclosure appeared first on SecurityWeek. This article is an excerpt
Ivanti CSA Vulnerability Exploited in Attacks Days After DIsclosure Read More »
Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks 2024-09-09 at 14:31 By Eduard Kovacs A recently patched SonicWall vulnerability tracked as CVE-2024-40766 may have been exploited in ransomware attacks. The post Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks Read More »
Recent SonicWall Firewall Vulnerability Potentially Exploited in the Wild 2024-09-06 at 16:17 By Eduard Kovacs SonicWall is warning customers that the recently patched critical vulnerability CVE-2024-40766 may be exploited in the wild. The post Recent SonicWall Firewall Vulnerability Potentially Exploited in the Wild appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS
Recent SonicWall Firewall Vulnerability Potentially Exploited in the Wild Read More »