Vulnerabilities

2,000 Citrix NetScaler Instances Backdoored via Recent Vulnerability

Malware & Threats, Vulnerabilities /

2,000 Citrix NetScaler Instances Backdoored via Recent Vulnerability 15/08/2023 at 19:47 By Ionut Arghire A threat actor has exploited a recent Citrix vulnerability (CVE-2023-3519) to infect roughly 2,000 NetScaler instances with a backdoor. The post 2,000 Citrix NetScaler Instances Backdoored via Recent Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS […]

React to this headline:

Loading spinner

2,000 Citrix NetScaler Instances Backdoored via Recent Vulnerability Read More »

Power Management Product Flaws Can Expose Data Centers to Damaging Attacks, Spying

data center, power, Vulnerabilities /

Power Management Product Flaws Can Expose Data Centers to Damaging Attacks, Spying 14/08/2023 at 16:16 By Eduard Kovacs Vulnerabilities in CyberPower and Dataprobe power management products could be exploited in data center attacks, including to cause damage and for spying. The post Power Management Product Flaws Can Expose Data Centers to Damaging Attacks, Spying appeared

React to this headline:

Loading spinner

Power Management Product Flaws Can Expose Data Centers to Damaging Attacks, Spying Read More »

Ford Says Wi-Fi Vulnerability Not a Safety Risk to Vehicles

car hacking, Ford, Mobile & Wireless, Vulnerabilities, Wi-Fi /

Ford Says Wi-Fi Vulnerability Not a Safety Risk to Vehicles 14/08/2023 at 13:46 By Ionut Arghire Ford says a critical vulnerability in the TI Wi-Fi driver of the SYNC 3 infotainment system on certain vehicle models does not pose a safety risk. The post Ford Says Wi-Fi Vulnerability Not a Safety Risk to Vehicles appeared

React to this headline:

Loading spinner

Ford Says Wi-Fi Vulnerability Not a Safety Risk to Vehicles Read More »

Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking

ATM, Endpoint Security, Featured, Vulnerabilities, vulnerability /

Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking 14/08/2023 at 13:46 By Eduard Kovacs Several vulnerabilities discovered in Iagona ScrutisWeb ATM fleet monitoring software could be exploited to remotely hack ATMs. The post Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking Read More »

In Other News: macOS Security Reports, Keyboard Spying, VPN Vulnerabilities

Government, In Other News, Malware & Threats, Vulnerabilities /

In Other News: macOS Security Reports, Keyboard Spying, VPN Vulnerabilities 11/08/2023 at 17:18 By SecurityWeek News Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of August 7, 2023. The post In Other News: macOS Security Reports, Keyboard Spying, VPN Vulnerabilities appeared first

React to this headline:

Loading spinner

In Other News: macOS Security Reports, Keyboard Spying, VPN Vulnerabilities Read More »

CISA Warns Organizations of Exploited Vulnerability Affecting .NET, Visual Studio 

.NET, CISA, Featured, Microsoft, Vulnerabilities, Zero-Day /

CISA Warns Organizations of Exploited Vulnerability Affecting .NET, Visual Studio  10/08/2023 at 12:33 By Eduard Kovacs CISA has added CVE-2023-38180, a zero-day vulnerability affecting .NET and Visual Studio, to its Known Exploited Vulnerabilities Catalog. The post CISA Warns Organizations of Exploited Vulnerability Affecting .NET, Visual Studio  appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

CISA Warns Organizations of Exploited Vulnerability Affecting .NET, Visual Studio  Read More »

Western Digital, Synology NAS Vulnerabilities Exposed Millions of Users’ Files

NAS, Vulnerabilities, WD /

Western Digital, Synology NAS Vulnerabilities Exposed Millions of Users’ Files 09/08/2023 at 21:03 By Eduard Kovacs Critical vulnerabilities discovered in WD and Synology NAS devices could have exposed the files of millions of users. The post Western Digital, Synology NAS Vulnerabilities Exposed Millions of Users’ Files appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Western Digital, Synology NAS Vulnerabilities Exposed Millions of Users’ Files Read More »

Microsoft Paid Out $13 Million via Bug Bounty Programs for Fourth Consecutive Year

bug bounty program, Microsoft, Vulnerabilities /

Microsoft Paid Out $13 Million via Bug Bounty Programs for Fourth Consecutive Year 09/08/2023 at 17:03 By Eduard Kovacs For the fourth consecutive year, Microsoft has paid out more than $13 million through its bug bounty programs. The post Microsoft Paid Out $13 Million via Bug Bounty Programs for Fourth Consecutive Year appeared first on

React to this headline:

Loading spinner

Microsoft Paid Out $13 Million via Bug Bounty Programs for Fourth Consecutive Year Read More »

Intel Addresses 80 Firmware, Software Vulnerabilities

Endpoint Security, Intel, patch, Patch Tuesday, Vulnerabilities /

Intel Addresses 80 Firmware, Software Vulnerabilities 09/08/2023 at 15:17 By Eduard Kovacs Intel has addressed 80 vulnerabilities affecting its products, including 18 high-severity privilege escalation and DoS flaws. The post Intel Addresses 80 Firmware, Software Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

Intel Addresses 80 Firmware, Software Vulnerabilities Read More »

SAP Patches Critical Vulnerability in PowerDesigner Product

SAP, Vulnerabilities, vulnerability /

SAP Patches Critical Vulnerability in PowerDesigner Product 09/08/2023 at 13:31 By Eduard Kovacs SAP has fixed over a dozen new vulnerabilities with its Patch Tuesday updates, including a critical flaw in its PowerDesigner product. The post SAP Patches Critical Vulnerability in PowerDesigner Product appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

SAP Patches Critical Vulnerability in PowerDesigner Product Read More »

New ‘Inception’ Side-Channel Attack Targets AMD Processors

Amd, CPU, Endpoint Security, Vulnerabilities /

New ‘Inception’ Side-Channel Attack Targets AMD Processors 09/08/2023 at 12:17 By Eduard Kovacs Researchers have disclosed the details of a new side-channel attack targeting AMD CPUs named Inception. The post New ‘Inception’ Side-Channel Attack Targets AMD Processors appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

New ‘Inception’ Side-Channel Attack Targets AMD Processors Read More »

Downfall: New Intel CPU Attack Exposing Sensitive Information

CPU, Endpoint Security, Featured, Intel, Vulnerabilities /

Downfall: New Intel CPU Attack Exposing Sensitive Information 09/08/2023 at 09:32 By Eduard Kovacs Google researcher discloses the details of an Intel CPU attack method named Downfall that may be remotely exploitable. The post Downfall: New Intel CPU Attack Exposing Sensitive Information appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Downfall: New Intel CPU Attack Exposing Sensitive Information Read More »

Patch Tuesday: Microsoft (Finally) Patches Exploited Office Zero-Days

Cyberwarfare, Microsoft, Nation-State, patch, Patch Tuesday, Vulnerabilities /

Patch Tuesday: Microsoft (Finally) Patches Exploited Office Zero-Days 08/08/2023 at 23:17 By Ryan Naraine Patch Tuesday: A month after confirming active exploitation of Office code execution flaws, Microsoft has shipped patches for multiple affected products. The post Patch Tuesday: Microsoft (Finally) Patches Exploited Office Zero-Days appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Patch Tuesday: Microsoft (Finally) Patches Exploited Office Zero-Days Read More »

Patch Tuesday: Adobe Patches 30 Acrobat, Reader Vulns

Application Security, Vulnerabilities /

Patch Tuesday: Adobe Patches 30 Acrobat, Reader Vulns 08/08/2023 at 21:19 By Ryan Naraine Adobe rolls out a big batch of security updates to fix at least 30 Acrobat and Reader vulnerabilities affecting Windows and macOS users. The post Patch Tuesday: Adobe Patches 30 Acrobat, Reader Vulns appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Patch Tuesday: Adobe Patches 30 Acrobat, Reader Vulns Read More »

New PaperCut Vulnerability Allows Remote Code Execution

PaperCut, printer, Vulnerabilities /

New PaperCut Vulnerability Allows Remote Code Execution 07/08/2023 at 18:02 By Eduard Kovacs A new vulnerability in the PaperCut MF/NG print management software can be exploited for unauthenticated, remote code execution. The post New PaperCut Vulnerability Allows Remote Code Execution appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

New PaperCut Vulnerability Allows Remote Code Execution Read More »

In Other News: Cybersecurity Funding Rebounds, Cloud Threats, BeyondTrust Vulnerability

cloud security, Cybersecurity Funding, Vulnerabilities /

In Other News: Cybersecurity Funding Rebounds, Cloud Threats, BeyondTrust Vulnerability 04/08/2023 at 17:48 By SecurityWeek News Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of July 31, 2023. The post In Other News: Cybersecurity Funding Rebounds, Cloud Threats, BeyondTrust Vulnerability appeared first

React to this headline:

Loading spinner

In Other News: Cybersecurity Funding Rebounds, Cloud Threats, BeyondTrust Vulnerability Read More »

Points.com Vulnerabilities Allowed Customer Data Theft, Rewards Program Hacking

Data leak, Vulnerabilities /

Points.com Vulnerabilities Allowed Customer Data Theft, Rewards Program Hacking 04/08/2023 at 15:17 By Ionut Arghire Multiple vulnerabilities in the airline and hotel rewards platform points.com could have led to personal information theft and unauthorized administrative access. The post Points.com Vulnerabilities Allowed Customer Data Theft, Rewards Program Hacking appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Points.com Vulnerabilities Allowed Customer Data Theft, Rewards Program Hacking Read More »

Exploitation of Ivanti EPMM Flaw Picking Up as New Vulnerability Is Disclosed

Ivanti, Vulnerabilities, vulnerability /

Exploitation of Ivanti EPMM Flaw Picking Up as New Vulnerability Is Disclosed 04/08/2023 at 13:31 By Eduard Kovacs Exploitation of the Ivanti EPMM flaw CVE-2023-35078 is picking up as a new critical vulnerability tracked as CVE-2023-35082 is disclosed. The post Exploitation of Ivanti EPMM Flaw Picking Up as New Vulnerability Is Disclosed appeared first on

React to this headline:

Loading spinner

Exploitation of Ivanti EPMM Flaw Picking Up as New Vulnerability Is Disclosed Read More »

Five Eyes Agencies Call Attention to Most Frequently Exploited Vulnerabilities

Featured, Government, Vulnerabilities, vulnerability /

Five Eyes Agencies Call Attention to Most Frequently Exploited Vulnerabilities 04/08/2023 at 12:31 By Ionut Arghire Five Eyes government agencies have published a list of the software vulnerabilities that were most frequently exploited in malicious attacks in 2022. The post Five Eyes Agencies Call Attention to Most Frequently Exploited Vulnerabilities appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Five Eyes Agencies Call Attention to Most Frequently Exploited Vulnerabilities Read More »

These Are the Top Five Cloud Security Risks, Qualys Says

Cloud, cloud security, Risk Management, Vulnerabilities /

These Are the Top Five Cloud Security Risks, Qualys Says 03/08/2023 at 17:47 By Kevin Townsend Cloud security specialist Qualys has provided its view of the top five cloud security risks, drawing insights and data from its own platform and third parties. The post These Are the Top Five Cloud Security Risks, Qualys Says appeared

React to this headline:

Loading spinner

These Are the Top Five Cloud Security Risks, Qualys Says Read More »

Scroll to Top