exploited

CISA Says SLP Vulnerability Allowing Amplified DoS Attacks Exploited in the Wild

DoS, exploited, Malware & Threats /

CISA Says SLP Vulnerability Allowing Amplified DoS Attacks Exploited in the Wild 09/11/2023 at 13:32 By Ionut Arghire CISA says an SLP vulnerability allowing for a DoS amplification factor of 2,000 is being exploited in attacks. The post CISA Says SLP Vulnerability Allowing Amplified DoS Attacks Exploited in the Wild appeared first on SecurityWeek. This […]

React to this headline:

Loading spinner

CISA Says SLP Vulnerability Allowing Amplified DoS Attacks Exploited in the Wild Read More »

SysAid Zero-Day Vulnerability Exploited by Ransomware Group

Cl0p, exploited, Ransomware, SysAid, Vulnerabilities, Zero-Day /

SysAid Zero-Day Vulnerability Exploited by Ransomware Group 09/11/2023 at 13:32 By Eduard Kovacs CVE-2023-47246 zero-day vulnerability in SysAid IT service management software has been exploited by Cl0p ransomware affiliates. The post SysAid Zero-Day Vulnerability Exploited by Ransomware Group appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React

React to this headline:

Loading spinner

SysAid Zero-Day Vulnerability Exploited by Ransomware Group Read More »

‘Looney Tunables’ Glibc Vulnerability Exploited in Cloud Attacks 

Cloud, cloud security, exploited, Featured, Linux /

‘Looney Tunables’ Glibc Vulnerability Exploited in Cloud Attacks  06/11/2023 at 17:06 By Eduard Kovacs Glibc vulnerability affecting major Linux distributions and tracked as Looney Tunables exploited in cloud attacks by Kinsing group.  The post ‘Looney Tunables’ Glibc Vulnerability Exploited in Cloud Attacks  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

‘Looney Tunables’ Glibc Vulnerability Exploited in Cloud Attacks  Read More »

Exploitation of Critical Confluence Vulnerability Begins

Confluence, exploited, Vulnerabilities /

Exploitation of Critical Confluence Vulnerability Begins 06/11/2023 at 15:47 By Ionut Arghire Threat actors have started exploiting a recent critical vulnerability in Confluence Data Center and Confluence Server. The post Exploitation of Critical Confluence Vulnerability Begins appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

Exploitation of Critical Confluence Vulnerability Begins Read More »

Apache ActiveMQ Vulnerability Exploited as Zero-Day

exploited, Malware & Threats, Zero-Day /

Apache ActiveMQ Vulnerability Exploited as Zero-Day 04/11/2023 at 19:31 By Eduard Kovacs The recently patched Apache ActiveMQ vulnerability tracked as CVE-2023-46604 has been exploited as a zero-day since at least October 10. The post Apache ActiveMQ Vulnerability Exploited as Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Apache ActiveMQ Vulnerability Exploited as Zero-Day Read More »

Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway

Citrix, Citrix Bleed, exploited, Malware & Threats, Vulnerabilities /

Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway 01/11/2023 at 17:31 By Ionut Arghire Multiple threat actors are exploiting CVE-2023-4966, aka Citrix Bleed, a critical vulnerability in NetScaler ADC and Gateway. The post Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway Read More »

Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day

exploited, Malware & Threats, Roundcube, Russia, Zero-Day /

Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day 25/10/2023 at 19:17 By Ionut Arghire Russian APT Winter Vivern exploits a zero-day in the Roundcube webmail server in attacks targeting European governments. The post Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day Read More »

Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000

Cisco, exploited, Malware & Threats, Vulnerabilities /

Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000 19/10/2023 at 14:01 By Eduard Kovacs The number of Cisco devices hacked via the CVE-2023-20198 zero-day has reached 40,000, including many in the US. The post Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000 appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000 Read More »

Recent NetScaler Vulnerability Exploited as Zero-Day Since August

Citrix, exploited, Featured, Vulnerabilities, Zero-Day /

Recent NetScaler Vulnerability Exploited as Zero-Day Since August 18/10/2023 at 14:01 By Ionut Arghire Mandiant says the recently patched Citrix NetScaler vulnerability CVE-2023-4966 had been exploited as zero-day since August. The post Recent NetScaler Vulnerability Exploited as Zero-Day Since August appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Recent NetScaler Vulnerability Exploited as Zero-Day Since August Read More »

US Gov Expects Widespread Exploitation of Atlassian Confluence Vulnerability

Atlassian, CISA, exploited, Vulnerabilities /

US Gov Expects Widespread Exploitation of Atlassian Confluence Vulnerability 17/10/2023 at 14:16 By Ionut Arghire CISA, FBI, and MS-ISAC warn of potential widespread exploitation of CVE-2023-22515, a critical vulnerability in Atlassian Confluence. The post US Gov Expects Widespread Exploitation of Atlassian Confluence Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

US Gov Expects Widespread Exploitation of Atlassian Confluence Vulnerability Read More »

Cisco Devices Hacked via IOS XE Zero-Day Vulnerability

Cisco, exploited, Featured, Vulnerabilities, Zero-Day /

Cisco Devices Hacked via IOS XE Zero-Day Vulnerability 17/10/2023 at 14:16 By Eduard Kovacs Cisco is warning customers that a new IOS XE zero-day vulnerability tracked as CVE-2023-20198 is being exploited to hack devices.  The post Cisco Devices Hacked via IOS XE Zero-Day Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Cisco Devices Hacked via IOS XE Zero-Day Vulnerability Read More »

Apple Releases iOS 16 Update to Patch Exploited Vulnerability 

exploited, iOS, Mobile & Wireless /

Apple Releases iOS 16 Update to Patch Exploited Vulnerability  12/10/2023 at 16:31 By Eduard Kovacs Apple has released iOS 16.7.1 and iPadOS 16.7.1 to patch CVE-2023-42824, a kernel vulnerability that has been exploited in attacks. The post Apple Releases iOS 16 Update to Patch Exploited Vulnerability  appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Apple Releases iOS 16 Update to Patch Exploited Vulnerability  Read More »

CISA Warns of Attacks Exploiting Adobe Acrobat Vulnerability 

CISA KEV, exploited, Vulnerabilities /

CISA Warns of Attacks Exploiting Adobe Acrobat Vulnerability  11/10/2023 at 13:48 By Ionut Arghire CISA has added five bugs to its Known Exploited Vulnerabilities catalog, including the recent WordPad, Skype, and HTTP/2 zero-days. The post CISA Warns of Attacks Exploiting Adobe Acrobat Vulnerability  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

CISA Warns of Attacks Exploiting Adobe Acrobat Vulnerability  Read More »

Companies Address Impact of Exploited Libwebp Vulnerability 

exploited, Vulnerabilities /

Companies Address Impact of Exploited Libwebp Vulnerability  03/10/2023 at 12:46 By Eduard Kovacs Companies have addressed the impact of the exploited Libwebp vulnerability CVE-2023-4863 on their products.  The post Companies Address Impact of Exploited Libwebp Vulnerability  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

Companies Address Impact of Exploited Libwebp Vulnerability  Read More »

Android’s October 2023 Security Updates Patch Two Exploited Vulnerabilities

Android, exploited, Featured, Mobile & Wireless, spyware, Zero-Day /

Android’s October 2023 Security Updates Patch Two Exploited Vulnerabilities 03/10/2023 at 12:46 By Ionut Arghire The October 2023 security update for Android patches two vulnerabilities exploited in attacks, both likely linked to spyware vendors. The post Android’s October 2023 Security Updates Patch Two Exploited Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Android’s October 2023 Security Updates Patch Two Exploited Vulnerabilities Read More »

Recently Patched TeamCity Vulnerability Exploited to Hack Servers

exploited, Featured, Vulnerabilities /

Recently Patched TeamCity Vulnerability Exploited to Hack Servers 02/10/2023 at 13:01 By Eduard Kovacs In-the-wild exploitation of a critical vulnerability in the TeamCity CI/CD server started shortly after a patch was released by developers. The post Recently Patched TeamCity Vulnerability Exploited to Hack Servers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Recently Patched TeamCity Vulnerability Exploited to Hack Servers Read More »

Cisco Warns of IOS Software Zero-Day Exploitation Attempts

Cisco, exploited, Featured, Vulnerabilities, Zero-Day /

Cisco Warns of IOS Software Zero-Day Exploitation Attempts 28/09/2023 at 15:32 By Ionut Arghire Cisco has released patches for vulnerability in the GET VPN feature of IOS and IOS XE software that has been exploited in attacks. The post Cisco Warns of IOS Software Zero-Day Exploitation Attempts appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Cisco Warns of IOS Software Zero-Day Exploitation Attempts Read More »

Google Rushes to Patch New Zero-Day Exploited by Spyware Vendor

Chrome, exploited, Featured, Vulnerabilities, Zero-Day /

Google Rushes to Patch New Zero-Day Exploited by Spyware Vendor 28/09/2023 at 13:16 By Eduard Kovacs Google has rushed to patch a new Chrome zero-day vulnerability, tracked as CVE-2023-5217 and exploited by a spyware vendor.  The post Google Rushes to Patch New Zero-Day Exploited by Spyware Vendor appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Google Rushes to Patch New Zero-Day Exploited by Spyware Vendor Read More »

Apple Patches 3 Zero-Days Likely Exploited by Spyware Vendor to Hack iPhones

apple, exploited, Featured, Mobile & Wireless, spyware, Vulnerabilities, Zero-Day /

Apple Patches 3 Zero-Days Likely Exploited by Spyware Vendor to Hack iPhones 22/09/2023 at 13:31 By Eduard Kovacs Apple has patched 3 zero-day vulnerabilities that have likely been exploited by a spyware vendor to hack iPhones. The post Apple Patches 3 Zero-Days Likely Exploited by Spyware Vendor to Hack iPhones appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Apple Patches 3 Zero-Days Likely Exploited by Spyware Vendor to Hack iPhones Read More »

Trend Micro Patches Exploited Zero-Day Vulnerability in Endpoint Security Products

Endpoint Security, exploited, Trend Micro, Vulnerabilities, Zero-Day /

Trend Micro Patches Exploited Zero-Day Vulnerability in Endpoint Security Products 19/09/2023 at 15:47 By Eduard Kovacs Trend Micro has patched CVE-2023-41179, an Apex One zero-day code execution vulnerability that has been exploited in attacks.  The post Trend Micro Patches Exploited Zero-Day Vulnerability in Endpoint Security Products appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Trend Micro Patches Exploited Zero-Day Vulnerability in Endpoint Security Products Read More »

Scroll to Top