News Archives • Page 437 of 631 • Daily CyberSecurity

Critical Vulnerabilities Uncovered in Rockwell Automation’s ThinManager: Immediate Action Required CVE-2024-5988 and CVE-2024-5989 Rockwell Automation vulnerability CVE-2018-1285

CVE-2024-5988 and CVE-2024-5989 Rockwell Automation vulnerability CVE-2018-1285

Critical Vulnerabilities Uncovered in Rockwell Automation’s ThinManager: Immediate Action Required

Ddos June 27, 2024

Rockwell Automation, a global leader in industrial automation and digital transformation, has issued a security advisory urging...

DBatLoader: A Malware Distribution via CMD Files DBatLoader malware

DBatLoader: A Malware Distribution via CMD Files

Ddos June 27, 2024

AhnLab Security Intelligence Center (ASEC) has issued a warning regarding the re-emergence of the DBatLoader malware, a...

GitLab Releases Critical Updates to Address Multiple Vulnerabilities GitLab Security Update CVE-2025-7659 CVE-2024-5655 GitLab Vulnerabilities, XSS & Data Exposure

GitLab Security Update CVE-2025-7659 CVE-2024-5655 GitLab Vulnerabilities, XSS & Data Exposure

GitLab Releases Critical Updates to Address Multiple Vulnerabilities

Ddos June 26, 2024

GitLab, a leading platform for DevOps lifecycle tools, has announced the release of critical updates for both...

CVE-2024-5276 (CVSS 9.8): Critical SQLi Flaw in Fortra FileCatalyst Workflow, PoC Available CVE-2024-5276 PoC

CVE-2024-5276 (CVSS 9.8): Critical SQLi Flaw in Fortra FileCatalyst Workflow, PoC Available

Ddos June 26, 2024

A critical SQL Injection vulnerability (CVE-2024-5276) has been discovered in Fortra FileCatalyst Workflow, a popular enterprise file...

Beyond Crypto: 8220 Gang Expands Arsenal with k4spreader k4spreader & 8220 Mining Gang

Beyond Crypto: 8220 Gang Expands Arsenal with k4spreader

Ddos June 26, 2024

Xlab uncovered a new threat emerging from the notorious “8220” mining gang, also known as “Water Sigbin.”...

CISA Issues Warning on Actively Exploited Flaws in GeoServer, Linux Kernel, and Roundcube Webmail Linux Kernel exploitation

CISA Issues Warning on Actively Exploited Flaws in GeoServer, Linux Kernel, and Roundcube Webmail

Ddos June 26, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three new vulnerabilities to its Known Exploited...

CVE-2024-38373: FreeRTOS-Plus-TCP Flaw Exposes Millions of IoT Devices to Critical Risk

Ddos June 26, 2024

A critical vulnerability (CVE-2024-38373) has been discovered in FreeRTOS-Plus-TCP, a popular TCP/IP stack widely used in Internet...

Critical Vulnerabilities in Progress WhatsUp Gold Demand Immediate Action Kemp LoadMaster Vulnerability WAF Bypass Technique Progress WhatsUp Gold Vulnerabilities

Kemp LoadMaster Vulnerability WAF Bypass Technique Progress WhatsUp Gold Vulnerabilities

Critical Vulnerabilities in Progress WhatsUp Gold Demand Immediate Action

Ddos June 26, 2024

Progress Software Corporation has issued a dire warning to all users of its WhatsUp Gold network monitoring...

SpyMax – A New Android RAT Targeting Telegram Users SpyMax

SpyMax – A New Android RAT Targeting Telegram Users

Ddos June 26, 2024

Cybersecurity researchers at K7 Security Labs have pulled back the curtain on a sophisticated and insidious Android...

PoC Exploit Published for Windows Kernel Elevation of Privilege Vulnerability (CVE-2024-30088) CVE-2024-30088 PoC exploit

PoC Exploit Published for Windows Kernel Elevation of Privilege Vulnerability (CVE-2024-30088)

Ddos June 25, 2024

A security researcher has published a proof-of-concept (PoC) exploit code targeting a recent high-severity vulnerability (CVE-2024-30088) in...

CVE-2024-5806: MOVEit Transfer Vulnerability Under Active Exploit, PoC Published CVE-2024-5806 PoC exploit

CVE-2024-5806: MOVEit Transfer Vulnerability Under Active Exploit, PoC Published

Ddos June 25, 2024

A critical vulnerability (CVE-2024-5806) in the widely used MOVEit Transfer file transfer software has been disclosed and...

Cybercriminals Target Singaporeans: Digital IDs Flood Dark Web Singapore Dark Web

Cybercriminals Target Singaporeans: Digital IDs Flood Dark Web

Ddos June 25, 2024

Singapore’s digital landscape is facing a mounting threat as cybercriminals exploit stolen digital identities of its citizens...

CVE-2024-5805: Critical SFTP Authentication Bypass Vulnerability in MOVEit Gateway

Ddos June 25, 2024

A critical vulnerability (CVE-2024-5805) has been identified in the MOVEit Gateway software, exposing organizations to the risk...

SEOPress Plugin Alert: CVE-2024-5488 Flaw Exposes 300K Sites

Ddos June 25, 2024

A critical vulnerability tracked as CVE-2024-5488 has been discovered in SEOPress, a popular WordPress plugin with over...

Beware of Word: Remcos RAT Lurks in Malicious Documents Remcos RAT campaign

Beware of Word: Remcos RAT Lurks in Malicious Documents

Ddos June 25, 2024

A new and sophisticated cyber attack campaign has surfaced, leveraging a weaponized Microsoft Word document to deliver...

StrelaStealer Malware Intensifies Attacks on European Email Users, Avoiding Russia StrelaStealer malware attacks - Phishing Scheme

StrelaStealer Malware Intensifies Attacks on European Email Users, Avoiding Russia

Ddos June 25, 2024

A renewed wave of cyberattacks orchestrated by the StrelaStealer malware is raising concerns across Europe, with a...

WordPress Issues Urgent Security Update to Patch Multiple Vulnerabilities WordPress vulnerabilities TheGem, WordPress Vulnerability

WordPress Issues Urgent Security Update to Patch Multiple Vulnerabilities

Ddos June 25, 2024

WordPress, the world’s leading content management system (CMS), has released a critical security update, “WordPress 6.5.5,” to...

Researcher Unveils PoC for Windows Bluetooth Service RCE Vulnerability CVE-2023-24871 PoC

Researcher Unveils PoC for Windows Bluetooth Service RCE Vulnerability

Ddos June 24, 2024

Recently, security researcher Miloš published the technical details and proof-of-concept (PoC) exploit code for a high severity...

Breaking News: Widespread WordPress Plugin Compromise in Active Supply Chain Attack WordPress Supply Chain Attack

Breaking News: Widespread WordPress Plugin Compromise in Active Supply Chain Attack

Ddos June 24, 2024

WordPress, the world’s most popular content management system, is facing a significant security threat in the form...

Wyze Cam v3 Urgent Update: Critical Vulnerability Grants Hackers Full Control CVE-2024-6246

Wyze Cam v3 Urgent Update: Critical Vulnerability Grants Hackers Full Control

Ddos June 24, 2024

Wyze, a popular smart home security company, has issued an urgent firmware update for its Wyze Cam...

Critical Alert 1 Active Exploit Detected Today