Vulnerability

Stealthy ‘DarkGate’ Trojan Abuses AutoHotkey, Evades Defender

• Malware
• Vulnerability

Stealthy ‘DarkGate’ Trojan Abuses AutoHotkey, Evades Defender

Ddos April 29, 2024 0

McAfee Labs has recently unveiled a sophisticated cyber threat known as DarkGate, which uses advanced tactics to...

Read More Read more about Stealthy ‘DarkGate’ Trojan Abuses AutoHotkey, Evades Defender

New R Vulnerability CVE-2024-27322: Code Execution Risk in Data Files

• Vulnerability

New R Vulnerability CVE-2024-27322: Code Execution Risk in Data Files

Ddos April 29, 2024 0

Researchers from HiddenLayer have discovered a significant vulnerability in the R programming language, tracked as CVE-2024-27322, that...

Read More Read more about New R Vulnerability CVE-2024-27322: Code Execution Risk in Data Files

MailCleaner Vulnerabilities Allow Remote Code Execution

• Vulnerability

MailCleaner Vulnerabilities Allow Remote Code Execution

Ddos April 29, 2024 0

In a critical security report released on April 29, 2024, the cybersecurity research team at Modzero unveiled...

Read More Read more about MailCleaner Vulnerabilities Allow Remote Code Execution

CVE-2024-33891: Researcher Exposes Severe Flaw in Delinea’s Secret Server

• Vulnerability

CVE-2024-33891: Researcher Exposes Severe Flaw in Delinea’s Secret Server

Ddos April 29, 2024 0

Organizations using Delinea’s Secret Server, a popular Privileged Access Management (PAM) solution, are urged to update immediately...

Read More Read more about CVE-2024-33891: Researcher Exposes Severe Flaw in Delinea’s Secret Server

Researchers Uncover ‘Pathfinder’ Exploit, Putting CPUs at Risk of High-Precision Attacks

• Vulnerability

Researchers Uncover ‘Pathfinder’ Exploit, Putting CPUs at Risk of High-Precision Attacks

Ddos April 29, 2024 0

Researchers from UC San Diego, UNC Chapel Hill, Purdue University, Georgia Tech, and Google have exposed a...

Read More Read more about Researchers Uncover ‘Pathfinder’ Exploit, Putting CPUs at Risk of High-Precision Attacks

CVE-2024-32766 (CVSS 10) – QNAP Vulnerability: Hackers Can Hijack Your NAS

• Vulnerability

CVE-2024-32766 (CVSS 10) – QNAP Vulnerability: Hackers Can Hijack Your NAS

Ddos April 28, 2024 0

QNAP, a leading manufacturer of network attached storage (NAS) devices, has issued an urgent security advisory to...

Read More Read more about CVE-2024-32766 (CVSS 10) – QNAP Vulnerability: Hackers Can Hijack Your NAS

Telegram Patches Flaw in Web Version, Vulnerability Exposed User Accounts to Hackers

• Vulnerability

Telegram Patches Flaw in Web Version, Vulnerability Exposed User Accounts to Hackers

Ddos April 28, 2024 0

A critical vulnerability within the Telegram Web application was disclosed by security researcher Pedro Batista. This flaw,...

Read More Read more about Telegram Patches Flaw in Web Version, Vulnerability Exposed User Accounts to Hackers

Researcher Releases PoC Exploit for Windows Kernel EoP Vulnerability (CVE-2024-26218)

• Vulnerability

Researcher Releases PoC Exploit for Windows Kernel EoP Vulnerability (CVE-2024-26218)

Ddos April 28, 2024 0

Cybersecurity researcher Gabe Kirkpatrick shared technical details and proof-of-concept (PoC) exploit code for a high-severity elevation of...

Read More Read more about Researcher Releases PoC Exploit for Windows Kernel EoP Vulnerability (CVE-2024-26218)

Palo Alto Firewalls Under Attack: Critical Flaw Exploited to Deploy Cryptojacking Malware

• Cyber Security
• Malware
• Vulnerability

Palo Alto Firewalls Under Attack: Critical Flaw Exploited to Deploy Cryptojacking Malware

Ddos April 28, 2024 0

Palo Alto Networks’ popular firewall appliances are currently in the crosshairs of cybercriminals. A newly disclosed critical...

Read More Read more about Palo Alto Firewalls Under Attack: Critical Flaw Exploited to Deploy Cryptojacking Malware

Mitel Issues Critical Fixes for XSS Vulnerabilities in MiContact Center Business

• Vulnerability

Mitel Issues Critical Fixes for XSS Vulnerabilities in MiContact Center Business

Ddos April 27, 2024 0

In their latest security bulletins, Mitel Networks Corporation has addressed critical security concerns for users of the...

Read More Read more about Mitel Issues Critical Fixes for XSS Vulnerabilities in MiContact Center Business

Windows Kernel EoP Vulnerability (CVE-2024-21345) Gets PoC Exploit Code

• Vulnerability

Windows Kernel EoP Vulnerability (CVE-2024-21345) Gets PoC Exploit Code

Ddos April 27, 2024 0

Security researcher Gabe Kirkpatrick has released proof-of-concept (PoC) exploit code for CVE-2024-21345, a high-severity Windows Kernel Elevation...

Read More Read more about Windows Kernel EoP Vulnerability (CVE-2024-21345) Gets PoC Exploit Code

Security Update for Webmin: Addressing Privilege Escalation Vulnerability

• Vulnerability

Security Update for Webmin: Addressing Privilege Escalation Vulnerability

Ddos April 26, 2024 0

Attention server administrators! A serious security vulnerability in Webmin, a widely used web-based system administration tool for...

Read More Read more about Security Update for Webmin: Addressing Privilege Escalation Vulnerability

Hanwha Vision Announces Critical Security Updates for NVR and DVR Models

• Vulnerability

Hanwha Vision Announces Critical Security Updates for NVR and DVR Models

Ddos April 26, 2024 0

Hanwha Vision, a leader in surveillance technology, has swiftly responded to significant cybersecurity threats identified in several...

Read More Read more about Hanwha Vision Announces Critical Security Updates for NVR and DVR Models

Skylab IGX IIoT Gateway Vulnerability (CVE-2024-4163): Root Access for Attackers

• Vulnerability

Skylab IGX IIoT Gateway Vulnerability (CVE-2024-4163): Root Access for Attackers

Ddos April 25, 2024 0

A significant vulnerability has been exposed in the widely-used Skylab IGX IIoT Gateway (CVE-2024-4163), allowing attackers to...

Read More Read more about Skylab IGX IIoT Gateway Vulnerability (CVE-2024-4163): Root Access for Attackers

PoC Exploit Releases for Critical Progress Flowmon Bug – CVE-2024-2389 (CVSS 10)

• Vulnerability

PoC Exploit Releases for Critical Progress Flowmon Bug – CVE-2024-2389 (CVSS 10)

Ddos April 25, 2024 0

Researchers at Rhino Security Labs have detailed a critical security flaw in Progress Flowmon, a widely used...

Read More Read more about PoC Exploit Releases for Critical Progress Flowmon Bug – CVE-2024-2389 (CVSS 10)

Cisco Zero-Day Exploit Code Goes Public: Patch Now or Face Total System Takeover

• Vulnerability

Cisco Zero-Day Exploit Code Goes Public: Patch Now or Face Total System Takeover

Ddos April 25, 2024 0

The release of public PoC exploit code targeting a maximum severity zero-day flaw in Cisco IOS XE...

Read More Read more about Cisco Zero-Day Exploit Code Goes Public: Patch Now or Face Total System Takeover

Cactus Ransomware Targets Qlik Sense Servers

• Cyber Security
• Malware
• Vulnerability

Cactus Ransomware Targets Qlik Sense Servers

Ddos April 25, 2024 0

A public-private partnership in the Netherlands has revealed critical information about a dangerous ransomware group dubbed Cactus...

Read More Read more about Cactus Ransomware Targets Qlik Sense Servers

Critical Judge0 Flaws Expose Online Coding Platforms to Full System Takeovers

• Vulnerability

Critical Judge0 Flaws Expose Online Coding Platforms to Full System Takeovers

Ddos April 24, 2024 0

A series of serious vulnerabilities in Judge0, a widely-used online code execution system, could have devastating consequences...

Read More Read more about Critical Judge0 Flaws Expose Online Coding Platforms to Full System Takeovers

CISA Added Critical Vulnerabilities in Cisco Products and CrushFTP to KEV

• Vulnerability

CISA Added Critical Vulnerabilities in Cisco Products and CrushFTP to KEV

Ddos April 24, 2024 0

In a pressing announcement, the Cybersecurity and Infrastructure Security Agency (CISA) has issued a high-priority alert for...

Read More Read more about CISA Added Critical Vulnerabilities in Cisco Products and CrushFTP to KEV

Urgent GitLab Update Patches Account Takeover Flaw, Other High-Severity Bugs

• Vulnerability

Urgent GitLab Update Patches Account Takeover Flaw, Other High-Severity Bugs

Ddos April 24, 2024 0

GitLab’s recent security release addresses a series of vulnerabilities that could have far-reaching consequences for your code...

Read More Read more about Urgent GitLab Update Patches Account Takeover Flaw, Other High-Severity Bugs