exploited

APT Exploits Windows Zero-Day to Execute Code via Disabled Internet Explorer

exploited, Malware & Threats, Void Banshee, Zero-Day /

APT Exploits Windows Zero-Day to Execute Code via Disabled Internet Explorer 2024-07-16 at 19:16 By Ionut Arghire The Void Banshee APT exploited the CVE-2024-38112 Windows zero-day to infect systems with the Atlantida stealer. The post APT Exploits Windows Zero-Day to Execute Code via Disabled Internet Explorer appeared first on SecurityWeek. This article is an excerpt […]

React to this headline:

Loading spinner

APT Exploits Windows Zero-Day to Execute Code via Disabled Internet Explorer Read More »

Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies

Cisco, cyberespionage, exploited, Featured, Malware & Threats, Velvet Ant, Zero-Day /

Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies 2024-07-02 at 12:16 By Ionut Arghire Cisco has patched an NX-OS command injection zero-day exploited by China-linked cyberespionage group Velvet Ant. The post Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies Read More »

CISA Warns of Exploited GeoServer, Linux Kernel, and Roundcube Vulnerabilities

CISA KEV, exploited, Vulnerabilities, vulnerability /

CISA Warns of Exploited GeoServer, Linux Kernel, and Roundcube Vulnerabilities 2024-06-27 at 15:31 By Ionut Arghire CISA on Wednesday warned that three older flaws in GeoServer, Linux kernel, and Roundcube webmail are exploited in the wild. The post CISA Warns of Exploited GeoServer, Linux Kernel, and Roundcube Vulnerabilities appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

CISA Warns of Exploited GeoServer, Linux Kernel, and Roundcube Vulnerabilities Read More »

Exploitation Attempts Target New MOVEit Transfer Vulnerability

exploited, MOVEit, Progress Software, Vulnerabilities /

Exploitation Attempts Target New MOVEit Transfer Vulnerability 2024-06-26 at 13:01 By Eduard Kovacs Exploitation attempts targeting CVE-2024-5806, a critical MOVEit Transfer vulnerability patched recently, have started. The post Exploitation Attempts Target New MOVEit Transfer Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this headline:

React to this headline:

Loading spinner

Exploitation Attempts Target New MOVEit Transfer Vulnerability Read More »

Recent Zyxel NAS Vulnerability Exploited by Botnet

botnet, exploited, Malware & Threats, Zyxel /

Recent Zyxel NAS Vulnerability Exploited by Botnet 2024-06-25 at 16:46 By Ionut Arghire A Mirai-like botnet has started exploiting a critical-severity vulnerability in discontinued Zyxel NAS products. The post Recent Zyxel NAS Vulnerability Exploited by Botnet appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

Recent Zyxel NAS Vulnerability Exploited by Botnet Read More »

Recent SolarWinds Serv-U Vulnerability Exploited in the Wild

exploited, SolarWinds, Vulnerabilities /

Recent SolarWinds Serv-U Vulnerability Exploited in the Wild 2024-06-21 at 16:32 By Ionut Arghire Threat actors are exploiting a recent path traversal vulnerability in SolarWinds Serv-U using public PoC code. The post Recent SolarWinds Serv-U Vulnerability Exploited in the Wild appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Recent SolarWinds Serv-U Vulnerability Exploited in the Wild Read More »

CISA Warns of Progress Telerik Vulnerability Exploitation

CISA KEV, exploited, Malware & Threats, Progress Software /

CISA Warns of Progress Telerik Vulnerability Exploitation 2024-06-14 at 13:46 By Ionut Arghire CISA urges federal agencies to apply mitigations for an exploited Progress Telerik vulnerability as soon as possible. The post CISA Warns of Progress Telerik Vulnerability Exploitation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

CISA Warns of Progress Telerik Vulnerability Exploitation Read More »

Ransomware Group Exploits PHP Vulnerability Days After Disclosure

exploited, Featured, PHP, Ransomware /

Ransomware Group Exploits PHP Vulnerability Days After Disclosure 2024-06-12 at 12:16 By Ionut Arghire The TellYouThePass ransomware gang started exploiting a recent code execution flaw in PHP days after public disclosure. The post Ransomware Group Exploits PHP Vulnerability Days After Disclosure appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Ransomware Group Exploits PHP Vulnerability Days After Disclosure Read More »

Arm Warns of Exploited Kernel Driver Vulnerability

Arm, exploited, Featured, GPU, Malware & Threats, Vulnerabilities /

Arm Warns of Exploited Kernel Driver Vulnerability 2024-06-11 at 13:16 By Ionut Arghire Arm warns that CVE-2024-4610, a Mali GPU kernel driver vulnerability addressed two years ago, is exploited in attacks. The post Arm Warns of Exploited Kernel Driver Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Arm Warns of Exploited Kernel Driver Vulnerability Read More »

Exploitation of Recent Check Point VPN Zero-Day Soars

Check Point, exploited, Vulnerabilities /

Exploitation of Recent Check Point VPN Zero-Day Soars 2024-06-06 at 16:46 By Ionut Arghire GreyNoise has observed a rapid increase in the number of exploitation attempts targeting a recent Check Point VPN zero-day. The post Exploitation of Recent Check Point VPN Zero-Day Soars appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Exploitation of Recent Check Point VPN Zero-Day Soars Read More »

CISA Warns of Attacks Exploiting Old Oracle WebLogic Vulnerability

CISA KEV, exploited, Malware & Threats, Oracle WebLogic /

CISA Warns of Attacks Exploiting Old Oracle WebLogic Vulnerability 2024-06-04 at 15:46 By Eduard Kovacs CISA has added an old Oracle WebLogic flaw tracked as CVE-2017-3506 to its known exploited vulnerabilities catalog. The post CISA Warns of Attacks Exploiting Old Oracle WebLogic Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

CISA Warns of Attacks Exploiting Old Oracle WebLogic Vulnerability Read More »

PoC Published for Exploited Check Point VPN Vulnerability

Check Point, exploited, Malware & Threats, VPN /

PoC Published for Exploited Check Point VPN Vulnerability 2024-06-03 at 15:46 By Ionut Arghire PoC code targeting a recent Check Point VPN zero-day has been released as Censys identifies 14,000 internet-accessible appliances. The post PoC Published for Exploited Check Point VPN Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

PoC Published for Exploited Check Point VPN Vulnerability Read More »

CISA Warns of Exploited Linux Kernel Vulnerability

CISA KEV, exploited, kernel, Linux, Vulnerabilities /

CISA Warns of Exploited Linux Kernel Vulnerability 2024-05-31 at 14:46 By Ionut Arghire CISA instructs federal agencies to mitigate CVE-2024-1086, a Linux kernel flaw leading to privilege escalation. The post CISA Warns of Exploited Linux Kernel Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

CISA Warns of Exploited Linux Kernel Vulnerability Read More »

Check Point VPN Attacks Involve Zero-Day Exploited Since April

Check Point, exploited, Featured, Malware & Threats, VPN, vulnerability, Zero-Day /

Check Point VPN Attacks Involve Zero-Day Exploited Since April 2024-05-30 at 12:46 By Eduard Kovacs The recently disclosed Check Point VPN attacks involve the zero-day vulnerability CVE-2024-24919, which allows hackers to obtain passwords. The post Check Point VPN Attacks Involve Zero-Day Exploited Since April appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Check Point VPN Attacks Involve Zero-Day Exploited Since April Read More »

CISA Warns of Attacks Exploiting NextGen Healthcare Mirth Connect Flaw

CISA KEV, exploited, Featured, Government, healthcare, Vulnerabilities /

CISA Warns of Attacks Exploiting NextGen Healthcare Mirth Connect Flaw 2024-05-21 at 14:31 By Eduard Kovacs CISA has added CVE-2023-43208, an unauthenticated remote code execution vulnerability, to its KEV catalog.  The post CISA Warns of Attacks Exploiting NextGen Healthcare Mirth Connect Flaw appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

CISA Warns of Attacks Exploiting NextGen Healthcare Mirth Connect Flaw Read More »

Third Chrome Zero-Day Patched by Google Within One Week

Chrome, exploited, Vulnerabilities, Zero-Day /

Third Chrome Zero-Day Patched by Google Within One Week 2024-05-16 at 12:16 By Ionut Arghire Google releases Chrome 125 to the stable channel with patches for nine vulnerabilities, including a zero-day. The post Third Chrome Zero-Day Patched by Google Within One Week appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Third Chrome Zero-Day Patched by Google Within One Week Read More »

Google Patches Second Chrome Zero-Day in One Week

Chrome, exploited, Vulnerabilities, Zero-Day /

Google Patches Second Chrome Zero-Day in One Week 2024-05-14 at 14:46 By Eduard Kovacs Google has announced patches for another Chrome vulnerability that has been exploited in attacks. This is the second zero-day addressed by the company in one week and the third flaw leveraged in malicious attacks in 2024. The new zero-day, tracked as

React to this headline:

Loading spinner

Google Patches Second Chrome Zero-Day in One Week Read More »

Exploited Chrome Zero-Day Patched by Google

Chrome, exploited, Featured, Vulnerabilities, Zero-Day /

Exploited Chrome Zero-Day Patched by Google 2024-05-10 at 15:46 By Eduard Kovacs A Chrome 124 update patches the second Chrome zero-day that has been found to be exploited in malicious attacks in 2024. The post Exploited Chrome Zero-Day Patched by Google appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Exploited Chrome Zero-Day Patched by Google Read More »

1,400 GitLab Servers Impacted by Exploited Vulnerability

exploited, GitLab, Vulnerabilities /

1,400 GitLab Servers Impacted by Exploited Vulnerability 2024-05-02 at 15:16 By Ionut Arghire CISA says a critical GitLab password reset flaw is being exploited in attacks and roughly 1,400 servers have not been patched. The post 1,400 GitLab Servers Impacted by Exploited Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

1,400 GitLab Servers Impacted by Exploited Vulnerability Read More »

Palo Alto Networks Shares Remediation Advice for Hacked Firewalls

exploited, Incident Response, Palo Alto Networks /

Palo Alto Networks Shares Remediation Advice for Hacked Firewalls 2024-04-25 at 17:16 By Eduard Kovacs Palo Alto Networks has shared remediation instructions for organizations whose firewalls have been hacked via CVE-2024-3400. The post Palo Alto Networks Shares Remediation Advice for Hacked Firewalls appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Palo Alto Networks Shares Remediation Advice for Hacked Firewalls Read More »

Scroll to Top