News Archives • Page 448 of 631 • Daily CyberSecurity

New Information Stealer “SamsStealer” Emerges, Threatening Windows Users

Ddos May 22, 2024

CYFIRMA, a leader in cybersecurity research, has recently unveiled a troubling new threat in the form of...

CVE-2024-31989: Critical Argo CD Flaw Exposes Kubernetes Clusters to Takeover CVE-2024-31989 Argo CD, vulnerability CVE-2025-55190

CVE-2024-31989: Critical Argo CD Flaw Exposes Kubernetes Clusters to Takeover

Ddos May 22, 2024

Argo CD, a popular GitOps continuous delivery tool for Kubernetes, has disclosed a critical security vulnerability (CVE-2024-31989,...

CVE-2024-21683: Atlassian Patches RCE Flaw in Confluence Data Center and Server

Ddos May 21, 2024

Atlassian, a leading provider of collaboration and productivity software, has urgently addressed a remote code execution (RCE)...

Broadcom Security Alert: VMware Vulnerabilities Expose Data, Enable Attacks CVE-2024-22273

Broadcom Security Alert: VMware Vulnerabilities Expose Data, Enable Attacks

Ddos May 21, 2024

Broadcom has issued an important security advisory detailing several vulnerabilities discovered in various VMware products. These vulnerabilities,...

Multiple Critical Vulnerabilities Discovered in Ivanti Endpoint Manager as seen in CVE-2024-29822 through CVE-2024-29827

Multiple Critical Vulnerabilities Discovered in Ivanti Endpoint Manager

Ddos May 21, 2024

Ivanti, a prominent provider of IT management and security solutions, has issued urgent security advisories warning of...

Turla APT Suspected in “Tiny BackDoor” Campaign Leveraging MSBuild to Evade Detection

Ddos May 21, 2024

Cyble Research and Intelligence Labs (CRIL) has identified a sophisticated campaign employing a tiny, stealthy backdoor, now...

CVE-2024-29849 (CVSS 9.8): Veeam’s Backup Nightmare, Full System Access Exposed CVE-2024-29849 - CVE-2025-23114

CVE-2024-29849 (CVSS 9.8): Veeam’s Backup Nightmare, Full System Access Exposed

Ddos May 21, 2024

Veeam Software, a leading provider of backup and recovery solutions, has issued urgent security advisories regarding multiple...

Cybercriminals Leverage Docusign Phishing Templates in Sophisticated Attacks

Ddos May 21, 2024

Abnormal Security, a leading cybersecurity firm, has issued a warning regarding a significant increase in Docusign-themed phishing...

Unauthenticated RCE Flaw in Fortinet FortiSIEM: Researchers Publishes PoC for CVE-2023-34992 CVE-2023-34992 PoC

Unauthenticated RCE Flaw in Fortinet FortiSIEM: Researchers Publishes PoC for CVE-2023-34992

Ddos May 21, 2024

Cybersecurity researchers at Horizon3.ai published the technical details and a proof-of-concept (PoC) for a critical unauthenticated remote...

Void Manticore: Iranian State-Sponsored Cyber Warfare Exposed Void Manticore & Scarred Manticore

Void Manticore: Iranian State-Sponsored Cyber Warfare Exposed

Ddos May 21, 2024

In the complex and rapidly evolving world of cybersecurity, state-sponsored threat actors continue to push the boundaries...

Invisible Miners: Unveiling GHOSTENGINE’s Crypto Mining Operations

Ddos May 21, 2024

Elastic Security Labs has shed light on a complex and insidious crypto-mining operation codenamed REF4578, with its...

Researchers Detail Code Execution Vulnerability in Popular PDF Viewer, PDF.js CVE-2024-4367 PoC

Researchers Detail Code Execution Vulnerability in Popular PDF Viewer, PDF.js

Ddos May 21, 2024

Security researchers from Codean Labs published the technical details and a proof-of-concept (PoC) exploit code for a...

CVE-2024-4985 (CVSS 10): Critical Authentication Bypass Flaw Found in GitHub Enterprise Server CVE-2024-4985 GitHub Enterprise Server vulnerabilities

CVE-2024-4985 GitHub Enterprise Server vulnerabilities

CVE-2024-4985 (CVSS 10): Critical Authentication Bypass Flaw Found in GitHub Enterprise Server

Ddos May 20, 2024

GitHub, the world’s leading software development platform, has disclosed a critical security vulnerability (CVE-2024-4985) in its self-hosted...

Linguistic Lumberjack (CVE-2024-4323): Critical Vulnerability Shakes Cloud Logging Infrastructure

Ddos May 20, 2024

A critical memory corruption vulnerability, dubbed Linguistic Lumberjack (CVE-2024-4323), has been uncovered in Fluent Bit, a widely-used...

CISA Warns of Actively Exploited Flaws in NextGen Healthcare Mirth Connect and Chromium

Ddos May 20, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a stark warning to federal agencies and...

Keylogger in Microsoft Exchange Server Breaches Government Agencies Worldwide Microsoft Exchange Server Keylogger

Keylogger in Microsoft Exchange Server Breaches Government Agencies Worldwide

Ddos May 20, 2024

A recent report from Positive Technologies Expert Security Center (PT ESC) reveals a concerning security breach impacting...

Unauthenticated Attackers Can Hijack 400K+ WordPress Sites via Fluent Forms Bug (CVE-2024-2771)

Ddos May 20, 2024

Fluent Forms, a popular WordPress plugin with over 400,000 active installations, has been found to contain multiple...

New ‘Cuckoo’ Mac Malware Mimics Homebrew, Threatens User Data Cuckoo Mac malware

New ‘Cuckoo’ Mac Malware Mimics Homebrew, Threatens User Data

Ddos May 20, 2024

Security researchers at Intego have uncovered a new variant of the “Cuckoo” Mac malware, a strain of...

CVE-2024-34359: Critical Vulnerability in AI Integration Package Threatens Data Security

Ddos May 20, 2024

A recent security vulnerability discovered in the popular llama_cpp_python package, used for integrating AI models with Python,...

Beware of Malicious OneNote Files: Phishing Attacks Evolve with Embedded Payloads

Ddos May 20, 2024

A new report from the Unit 42 Incident Response team reveals a disturbing trend in cyber attacks:...

Critical Alert 1 Active Exploit Detected Today