News Archives • Page 454 of 631 • Daily CyberSecurity

CVE-2024-33530: Jitsi Meet Flaw Leaks Meeting Passwords, Exposing Calls to Intruders

Ddos May 2, 2024

Security researcher Florian Port at Insinuator recently uncovered a critical flaw in Jitsi Meet, the popular open-source...

Microsoft Graph API Exploited for Stealthy Attacks Microsoft Graph API C&C

Microsoft Graph API Exploited for Stealthy Attacks

Ddos May 2, 2024

A new trend is gaining momentum among cybercriminals—utilizing Microsoft’s Graph API for sinister purposes. This trend highlights...

Mal.Metrica Malware Exploits WordPress Vulnerabilities: 17,000+ Sites Hit

Ddos May 2, 2024

Beware of that seemingly harmless “Verify that you are a human” pop-up window the next time you...

CVE-2024-32114: High-Severity Vulnerability Exposed in Apache ActiveMQ

Ddos May 2, 2024

Apache ActiveMQ, widely regarded as the most popular open-source, multi-protocol, Java-based message broker, facilitates communication across a...

Cisco IP Phones Exposed: Vulnerabilities Allow Hackers to Disrupt, Spy, and Even Make Calls CVE-2024-20321 & CVE-2024-20267

Cisco IP Phones Exposed: Vulnerabilities Allow Hackers to Disrupt, Spy, and Even Make Calls

Ddos May 2, 2024

Cisco has issued a security advisory highlighting multiple vulnerabilities in the firmware of several IP Phone models...

CVE-2024-32971: Critical Vulnerability in Apollo Router Compromises Data Integrity Apollo Router CVE-2024-32971 vulnerability

CVE-2024-32971: Critical Vulnerability in Apollo Router Compromises Data Integrity

Ddos May 2, 2024

A critical-severity vulnerability, identified as CVE-2024-32971 with a CVSS score of 9.1, has been discovered in versions...

Iran’s APT42 Spies Target NGOs, Clouds in Espionage Campaign APT42

Iran’s APT42 Spies Target NGOs, Clouds in Espionage Campaign

Ddos May 2, 2024

A new report by cybersecurity firm Mandiant has revealed the inner workings of APT42, an Iranian state-sponsored...

CVE-2024-32962 (CVSS 10): Critical Vulnerability in XML-Crypto Affects Millions

Ddos May 1, 2024

A significant security flaw has been discovered in the widely used XML-Crypto npm package, a tool integral...

Dropbox Sign Data Breach: What You Need to Know and How to Protect Yourself

Ddos May 1, 2024

Dropbox confirmed a security breach on April 24th within its Dropbox Sign (formerly HelloSign) service, exposing customer...

New Cuttlefish Malware Evades Detection, Targets SOHO Routers

Ddos May 1, 2024

Security researchers at Lumen Technologies’ Black Lotus Labs have uncovered a sophisticated new malware campaign targeting enterprise-grade...

Adload Adware Quickly Evades Apple’s Expanded XProtect

Ddos May 1, 2024

A recent update of Apple’s XProtect security framework, which included an unprecedented 74 new rules targeting the...

“Dirty Stream” Vulnerability Pattern Uncovered: New Threat Imperils Popular Android Apps

Ddos May 1, 2024

Security researchers at Microsoft Threat Intelligence have revealed a critical vulnerability pattern affecting a wide array of...

HPE Aruba Networking Patches Critical Vulnerabilities in Mobility Controllers and Gateways CVE-2024-26305 _ CVE-2025-23058 Aruba 5G Core Open Redirect

CVE-2024-26305 _ CVE-2025-23058 Aruba 5G Core Open Redirect

HPE Aruba Networking Patches Critical Vulnerabilities in Mobility Controllers and Gateways

Ddos May 1, 2024

Recently, HPE Aruba Networking announced a comprehensive update to its ArubaOS software, targeting multiple critical vulnerabilities that...

“Goldoon” Botnet Exploits Unpatched D-Link Devices Goldoon Botnet Operation False Siren Red Alert Spyware

“Goldoon” Botnet Exploits Unpatched D-Link Devices

Ddos May 1, 2024

Security researchers at FortiGuard Labs have uncovered a new botnet campaign. Dubbed “Goldoon,” this botnet is ruthlessly...

TargetCompany Ransomware Group Escalates Attacks: New Tools and Persistent Targeting of MS-SQL Servers

Ddos May 1, 2024

The world of cybersecurity is witnessing an alarming trend as ransomware groups intensify their attacks on Microsoft...

SonicWall Patches GMS Flaws to Block Data Breaches and Bypass Attacks SonicWall Zero-Day, SMA1000 Exploit Chain SonicWall, firewall configuration CVE-2024-29010 & CVE-2024-29011 SonicWall NetExtender VPN Vulnerability

SonicWall Zero-Day, SMA1000 Exploit Chain SonicWall, firewall configuration CVE-2024-29010 & CVE-2024-29011 SonicWall NetExtender VPN Vulnerability

SonicWall Patches GMS Flaws to Block Data Breaches and Bypass Attacks

Ddos April 30, 2024

SonicWall has released a security patch for its Global Management System (GMS) software, addressing two vulnerabilities that...

ArcaneDoor Campaign: Cisco Zero-Day Vulnerabilities Threaten 162K Hosts Worldwide

Ddos April 30, 2024

Recent findings by Cisco Talos have unveiled a coordinated threat actor campaign dubbed “ArcaneDoor,” targeting government-owned network...

Lazarus Exposed: $200M Crypto Laundering Scheme Revealed Lazarus Group Crypto

Lazarus Exposed: $200M Crypto Laundering Scheme Revealed

Ddos April 30, 2024

A comprehensive report by the anonymous analyst ZachXBT has uncovered the money laundering tactics employed by the...

CVE-2024-27790: FileMaker Server Vulnerability Patched, Data Access Risk Addressed

Ddos April 30, 2024

Claris International released a critical security patch for its FileMaker Server software today, addressing a vulnerability that...

CISA Catalogs Microsoft’s CVE-2024-29988 as Actively Exploited Vulnerability CVE-2024-29988 vulnerability

CISA Catalogs Microsoft’s CVE-2024-29988 as Actively Exploited Vulnerability

Ddos April 30, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a recently patched Microsoft vulnerability (CVE-2024-29988) to its...

Critical Alert 1 Active Exploit Detected Today