News

VMware vCenter Server RCE (CVE-2024-22274): PoC Exposes Systems to Remote Takeover

• Vulnerability

VMware vCenter Server RCE (CVE-2024-22274): PoC Exposes Systems to Remote Takeover

Ddos July 8, 2024 0

A proof-of-concept (PoC) exploit has been released, targeting a recently patched high-severity vulnerability (CVE-2024-22274) in the VMware...

Read More Read more about VMware vCenter Server RCE (CVE-2024-22274): PoC Exposes Systems to Remote Takeover

CVE-2024-36138: High-Severity Vulnerability in Node.js Allows Code Execution on Windows

• Vulnerability

CVE-2024-36138: High-Severity Vulnerability in Node.js Allows Code Execution on Windows

Ddos July 8, 2024 0

The Node.js Project has released a security update to address multiple vulnerabilities, including a high-severity flaw that...

Read More Read more about CVE-2024-36138: High-Severity Vulnerability in Node.js Allows Code Execution on Windows

Critical Security Advisory for Apache CloudStack: CVE-2024-38346 and CVE-2024-39864

• Vulnerability

Critical Security Advisory for Apache CloudStack: CVE-2024-38346 and CVE-2024-39864

Ddos July 8, 2024 0

The Apache Software Foundation has issued an urgent security advisory, disclosing two critical vulnerabilities (CVE-2024-38346 and CVE-2024-39864)...

Read More Read more about Critical Security Advisory for Apache CloudStack: CVE-2024-38346 and CVE-2024-39864

Turla APT Group Unleashes Sophisticated Fileless Backdoor via Compromised Site

• Cyber Security
• Malware

Turla APT Group Unleashes Sophisticated Fileless Backdoor via Compromised Site

Ddos July 8, 2024 0

A new campaign attributed to the notorious Turla APT group is exploiting a compromised website of the...

Read More Read more about Turla APT Group Unleashes Sophisticated Fileless Backdoor via Compromised Site

Hackers are Actively Exploiting CVE-2024-5441 Flaw, 150,000 Sites at Risk

• Vulnerability

Hackers are Actively Exploiting CVE-2024-5441 Flaw, 150,000 Sites at Risk

Ddos July 8, 2024 0

A severe vulnerability (CVE-2024-5441) has been discovered in the widely used WordPress plugin Modern Events Calendar, leaving...

Read More Read more about Hackers are Actively Exploiting CVE-2024-5441 Flaw, 150,000 Sites at Risk

Avast Cracks DoNex Ransomware, Offering the Decryptor

• Data Leak
• Malware

Avast Cracks DoNex Ransomware, Offering the Decryptor

Ddos July 8, 2024 0

Researchers from Avast have uncovered a critical flaw in the cryptographic schema of the notorious DoNex ransomware...

Read More Read more about Avast Cracks DoNex Ransomware, Offering the Decryptor

ZOTAC Security Breach Exposes Customer Data in Google Search

• Data Leak

ZOTAC Security Breach Exposes Customer Data in Google Search

Ddos July 8, 2024 0

In a recent revelation, hardware manufacturer ZOTAC faced a significant security lapse that compromised sensitive customer information....

Read More Read more about ZOTAC Security Breach Exposes Customer Data in Google Search

Cisco Confirms Critical OpenSSH regreSSHion (CVE-2024-6387) Flaw in Multiple Products

• Vulnerability

Cisco Confirms Critical OpenSSH regreSSHion (CVE-2024-6387) Flaw in Multiple Products

Ddos July 7, 2024 0

Cisco has issued a critical security advisory, warning users of a high-severity vulnerability (CVE-2024-6387) codenamed “regreSSHion” that...

Read More Read more about Cisco Confirms Critical OpenSSH regreSSHion (CVE-2024-6387) Flaw in Multiple Products

CVE-2024-39349 (CVSS 9.8): Critical Vulnerability in Synology Surveillance Cameras

• Vulnerability

CVE-2024-39349 (CVSS 9.8): Critical Vulnerability in Synology Surveillance Cameras

Ddos July 7, 2024 0

Recently, Synology, a leading network-attached storage (NAS) and surveillance solution provider, has updated its security advisory to...

Read More Read more about CVE-2024-39349 (CVSS 9.8): Critical Vulnerability in Synology Surveillance Cameras

Volcano Demon: New Ransomware Gang Targets Windows & Linux

• Cyber Security
• Malware

Volcano Demon: New Ransomware Gang Targets Windows & Linux

Ddos July 7, 2024 0

Halcyon’s research team has identified a new ransomware group dubbed “Volcano Demon,” responsible for a series of...

Read More Read more about Volcano Demon: New Ransomware Gang Targets Windows & Linux

Cybercriminals Escalate Attacks Exploiting Microsoft SmartScreen Flaw (CVE-2024-21412)

• Cyber Security
• Vulnerability

Cybercriminals Escalate Attacks Exploiting Microsoft SmartScreen Flaw (CVE-2024-21412)

Ddos July 7, 2024 0

A concerning report from Cyble Research and Intelligence Labs (CRIL) has revealed a surge in cyberattacks exploiting...

Read More Read more about Cybercriminals Escalate Attacks Exploiting Microsoft SmartScreen Flaw (CVE-2024-21412)

ABB Warns of Critical ASPECT System Vulnerabilities: CVE-2024-6209 and CVE-2024-6298

• Vulnerability

ABB Warns of Critical ASPECT System Vulnerabilities: CVE-2024-6209 and CVE-2024-6298

Ddos July 7, 2024 0

ABB, a global leader in electrification and automation technologies, has released a critical cybersecurity advisory concerning vulnerabilities...

Read More Read more about ABB Warns of Critical ASPECT System Vulnerabilities: CVE-2024-6209 and CVE-2024-6298

Kimsuky Group’s New Backdoor, HappyDoor, Raises Cybersecurity Concerns

• Cyber Security
• Malware

Kimsuky Group’s New Backdoor, HappyDoor, Raises Cybersecurity Concerns

Ddos July 7, 2024 0

The AhnLab Security Intelligence Center (ASEC) has issued a warning about a new backdoor malware called HappyDoor,...

Read More Read more about Kimsuky Group’s New Backdoor, HappyDoor, Raises Cybersecurity Concerns

Misconfigured Jenkins Servers Targeted in Cryptojacking Attacks

• Cyber Security
• Malware

Misconfigured Jenkins Servers Targeted in Cryptojacking Attacks

Ddos July 6, 2024 0

Trend Micro, a global leader in cybersecurity, has issued a warning about a recent wave of attacks...

Read More Read more about Misconfigured Jenkins Servers Targeted in Cryptojacking Attacks

CVE-2024-36041: KDE Plasma Flaw Opens Door to Unauthorized System Access

• Vulnerability

CVE-2024-36041: KDE Plasma Flaw Opens Door to Unauthorized System Access

Ddos July 6, 2024 0

The KDE development team has issued a critical security advisory warning users of a high-severity vulnerability (CVE-2024-36041)...

Read More Read more about CVE-2024-36041: KDE Plasma Flaw Opens Door to Unauthorized System Access

CVE-2024-6376 (CVSS 9.8) in MongoDB Compass Exposes Systems to Code Injection Risks

• Vulnerability

CVE-2024-6376 (CVSS 9.8) in MongoDB Compass Exposes Systems to Code Injection Risks

Ddos July 5, 2024 0

A recent discovery has unveiled a critical security vulnerability in MongoDB Compass, a widely-used graphical user interface...

Read More Read more about CVE-2024-6376 (CVSS 9.8) in MongoDB Compass Exposes Systems to Code Injection Risks

Cloudflare’s 1.1.1.1 DNS Service Disrupted by BGP Hijacking and Route Leak

• Cyber Security

Cloudflare’s 1.1.1.1 DNS Service Disrupted by BGP Hijacking and Route Leak

Ddos July 5, 2024 0

On June 27, 2024, Cloudflare’s popular 1.1.1.1 public DNS resolver service experienced disruptions, leaving a small percentage...

Read More Read more about Cloudflare’s 1.1.1.1 DNS Service Disrupted by BGP Hijacking and Route Leak

CVE-2024-39943 (CVSS 9.9): Critical Vulnerability in HTTP File Server Exposes Systems to RCE

• Vulnerability

CVE-2024-39943 (CVSS 9.9): Critical Vulnerability in HTTP File Server Exposes Systems to RCE

Ddos July 5, 2024 0

A critical vulnerability has been identified in HFS (HTTP File Server), a popular file-sharing software used to...

Read More Read more about CVE-2024-39943 (CVSS 9.9): Critical Vulnerability in HTTP File Server Exposes Systems to RCE

Apache HTTP Server Update Patches Critical Source Code Disclosure Flaw (CVE-2024-39884)

• Vulnerability

Apache HTTP Server Update Patches Critical Source Code Disclosure Flaw (CVE-2024-39884)

Ddos July 4, 2024 0

Recently, the Apache Software Foundation has rushed to release Apache HTTP Server version 2.4.61, a crucial update...

Read More Read more about Apache HTTP Server Update Patches Critical Source Code Disclosure Flaw (CVE-2024-39884)

Widespread Supply Chain Attack on NPM: Trojanized jQuery Discovered

• Malware

Widespread Supply Chain Attack on NPM: Trojanized jQuery Discovered

Ddos July 4, 2024 0

A sophisticated and persistent supply chain attack targeting the popular JavaScript library jQuery has been uncovered by...

Read More Read more about Widespread Supply Chain Attack on NPM: Trojanized jQuery Discovered