Zero-Day

Apple Patches Another Kernel Flaw Exploited in ‘Operation Triangulation’ Attacks

apple, Government, iOS, Mobile & Wireless, Vulnerabilities, Zero-Day /

Apple Patches Another Kernel Flaw Exploited in ‘Operation Triangulation’ Attacks 25/07/2023 at 03:03 By Ryan Naraine Apple patches another zero-day flaw used in the ‘Operation Triangulation’ exploit chain. iOS and macOS-powered devices are affected. The post Apple Patches Another Kernel Flaw Exploited in ‘Operation Triangulation’ Attacks appeared first on SecurityWeek. This article is an excerpt […]

React to this headline:

Loading spinner

Apple Patches Another Kernel Flaw Exploited in ‘Operation Triangulation’ Attacks Read More »

Citrix Zero-Day Exploited Against Critical Infrastructure Organization

Citrix, exploited, Featured, Vulnerabilities, Zero-Day /

Citrix Zero-Day Exploited Against Critical Infrastructure Organization 21/07/2023 at 13:33 By Eduard Kovacs CISA says the new Citrix zero day vulnerability tracked as CVE-2023-3519 has been exploited against a critical infrastructure organization. The post Citrix Zero-Day Exploited Against Critical Infrastructure Organization appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Citrix Zero-Day Exploited Against Critical Infrastructure Organization Read More »

Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned

Citrix, exploited, Vulnerabilities, Zero-Day /

Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned 19/07/2023 at 13:32 By Eduard Kovacs Citrix has patched several vulnerabilities, including CVE-2023-3519, a critical remote code execution zero-day that has been exploited in attacks. The post Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned Read More »

Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day

Featured, Vulnerabilities, Zero-Day, Zimbra /

Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day 14/07/2023 at 13:06 By Eduard Kovacs Google researchers have discovered that a Zimbra zero-day vulnerability has been exploited in the wild, with users being advised to manually patch their installations. The post Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day Read More »

Microsoft Zero Day Vulnerability CVE-2023-36884 Being Actively Exploited

CVE-2023-36884, Microsoft Office, NATO, Ransomware, RomCom, Russia-Ukraine conflict, Storm-0978, Underground Ransomware, vulnerability, Zero-Day /

Microsoft Zero Day Vulnerability CVE-2023-36884 Being Actively Exploited 12/07/2023 at 16:03 By cybleinc CRIL analyzes the impact of Zero-Day Exploit for CVE-2023-36884 in cyber espionage and ransomware operations. The post Microsoft Zero Day Vulnerability CVE-2023-36884 Being Actively Exploited appeared first on Cyble. This article is an excerpt from Cyble View Original Source React to this

React to this headline:

Loading spinner

Microsoft Zero Day Vulnerability CVE-2023-36884 Being Actively Exploited Read More »

Apple’s Rapid Security Response Patches Are Breaking Websites

apple, buggy update, Mobile & Wireless, Zero-Day /

Apple’s Rapid Security Response Patches Are Breaking Websites 11/07/2023 at 21:47 By Eduard Kovacs Apple has pulled its latest Rapid Security Response updates for iOS and macOS after users complained that they can no longer access websites. The post Apple’s Rapid Security Response Patches Are Breaking Websites appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Apple’s Rapid Security Response Patches Are Breaking Websites Read More »

Apple Ships Urgent iOS Patch for WebKit Zero-Day

apple, CVE-2023-37450, Incident Response, iOS, iPadOS, Mobile & Wireless, Vulnerabilities, WebKit, Zero-Day /

Apple Ships Urgent iOS Patch for WebKit Zero-Day 11/07/2023 at 02:02 By Ryan Naraine Apple rolls out urgent iOS and iPadOS software updates and warned that zero-day exploitation has already been detected. The post Apple Ships Urgent iOS Patch for WebKit Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Apple Ships Urgent iOS Patch for WebKit Zero-Day Read More »

After Zero-Day Attacks, MOVEit Turns to Security Service Packs

CVE-2023-36932, CVE-2023-36933, CVE-2023-36934, cybercrime, Progress Software, Ransomware, Vulnerabilities, Zero-Day /

After Zero-Day Attacks, MOVEit Turns to Security Service Packs 07/07/2023 at 20:31 By Ryan Naraine Facing ransomware zero-days, Progress Software will release regular service packs to help customers mitigate critical security flaws. The post After Zero-Day Attacks, MOVEit Turns to Security Service Packs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

After Zero-Day Attacks, MOVEit Turns to Security Service Packs Read More »

Apple Patches iOS Flaws Used in Kaspersky ‘Operation Triangulation’ 

CVE-2023-32434, CVE-2023-32435, Nation-State, Vulnerabilities, Zero-Day /

Apple Patches iOS Flaws Used in Kaspersky ‘Operation Triangulation’  21/06/2023 at 22:52 By Ionut Arghire Apple ships major iOS security updates to cover code execution vulnerabilities already exploited in the wild. The post Apple Patches iOS Flaws Used in Kaspersky ‘Operation Triangulation’  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Apple Patches iOS Flaws Used in Kaspersky ‘Operation Triangulation’  Read More »

Fake Security Researcher Accounts Pushing Malware Disguised as Zero-Day Exploits

Application Security, Zero-Day /

Fake Security Researcher Accounts Pushing Malware Disguised as Zero-Day Exploits 15/06/2023 at 18:28 By Eduard Kovacs Fake security researcher accounts seen distributing malware disguised as Chrome, Signal, WhatsApp, Discord and Exchange zero-day exploits. The post Fake Security Researcher Accounts Pushing Malware Disguised as Zero-Day Exploits appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Fake Security Researcher Accounts Pushing Malware Disguised as Zero-Day Exploits Read More »

Chinese Cyberspies Caught Exploiting VMware ESXi Zero-Day

Cyberwarfare, Featured, VMWare, Vulnerabilities, Zero-Day /

Chinese Cyberspies Caught Exploiting VMware ESXi Zero-Day 13/06/2023 at 21:19 By Ionut Arghire Mandiant has observed a Chinese cyberespionage group exploiting a VMware ESXi zero-day vulnerability for privilege escalation. The post Chinese Cyberspies Caught Exploiting VMware ESXi Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React

React to this headline:

Loading spinner

Chinese Cyberspies Caught Exploiting VMware ESXi Zero-Day Read More »

Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks

Featured, Fortinet, Vulnerabilities, Zero-Day /

Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks 13/06/2023 at 11:50 By Eduard Kovacs Fortinet has warned customers that the critical CVE-2023-27997 vulnerability that was patched recently could be a zero-day exploited in limited attacks. The post Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks Read More »

Google Patches Third Chrome Zero-Day of 2023

Chrome, Featured, Vulnerabilities, Zero-Day /

Google Patches Third Chrome Zero-Day of 2023 06/06/2023 at 12:03 By Eduard Kovacs Google has released a Chrome 114 security update that patches CVE-2023-3079, the third zero-day vulnerability patched in the browser in 2023. The post Google Patches Third Chrome Zero-Day of 2023 appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Google Patches Third Chrome Zero-Day of 2023 Read More »

Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations

Featured, MOVEit, Vulnerabilities, Zero-Day /

Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations 02/06/2023 at 12:41 By Eduard Kovacs A zero-day vulnerability in Progress Software’s MOVEit Transfer product has been exploited to hack organizations and steal their data. The post Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations appeared first on SecurityWeek.

React to this headline:

Loading spinner

Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations Read More »

Barracuda Zero-Day Exploited to Deliver Malware for Months Before Discovery

Barracuda, Featured, Vulnerabilities, Zero-Day /

Barracuda Zero-Day Exploited to Deliver Malware for Months Before Discovery 31/05/2023 at 12:49 By Eduard Kovacs The recently discovered Barracuda zero-day vulnerability CVE-2023-2868 has been exploited to deliver malware and steal data since at least October 2022. The post Barracuda Zero-Day Exploited to Deliver Malware for Months Before Discovery appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Barracuda Zero-Day Exploited to Deliver Malware for Months Before Discovery Read More »

Evolving Threat Landscape of Hacktivism in Colombia

#OpColombia, Berghof, Berghof Web Panel, critical infrastructure, cybercrime, darkweb, data breach, Data leak, DDoS Attack, Fueling Systems, GhostSec, GNSS, Government, Hacktivism, HMI, Human Machine Interface, Industrial Control Systems, Israel, Malware, National Critical Infrastructure, OpIsrael, OSINT, Power Supply Controllers, Radio Broadcast, Satellite Receivers, SiegedSec, Threat Intelligence, Zero-Day /

Evolving Threat Landscape of Hacktivism in Colombia 31/05/2023 at 11:22 By cybleinc CRIL investigates the evolving threat landscape of hacktivism leading to cyberattacks on Colombian Critical Infrastructure and Zero-day Sales by Hacktivists. The post Evolving Threat Landscape of Hacktivism in Colombia appeared first on Cyble. This article is an excerpt from Cyble View Original Source

React to this headline:

Loading spinner

Evolving Threat Landscape of Hacktivism in Colombia Read More »

Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances

Barracuda, exploited, Vulnerabilities, Zero-Day /

Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances 25/05/2023 at 14:05 By Eduard Kovacs Barracuda Networks is warning customers about CVE-2023-2868, a zero-day exploited to hack some Email Security Gateway (ESG) appliances. The post Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances Read More »

Apple Patches 3 Exploited WebKit Zero-Day Vulnerabilities

apple, Featured, Mobile & Wireless, Vulnerabilities, Zero-Day /

Apple Patches 3 Exploited WebKit Zero-Day Vulnerabilities 19/05/2023 at 13:05 By Eduard Kovacs Apple has patched 3 zero-days, two of which are the vulnerabilities patched with the tech giant’s first Rapid Security Response updates. The post Apple Patches 3 Exploited WebKit Zero-Day Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Apple Patches 3 Exploited WebKit Zero-Day Vulnerabilities Read More »

Microsoft Makes Second Attempt to Patch Recent Outlook Zero-Day

Microsoft, Vulnerabilities, Zero-Day /

Microsoft Makes Second Attempt to Patch Recent Outlook Zero-Day 11/05/2023 at 15:45 By Ionut Arghire Microsoft has rolled out patches for a vulnerability allowing attackers to bypass mitigations for a critical Outlook zero-day leading to credentials theft. The post Microsoft Makes Second Attempt to Patch Recent Outlook Zero-Day appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Microsoft Makes Second Attempt to Patch Recent Outlook Zero-Day Read More »

Scroll to Top