Vulnerability

Akamai Unveils New VPN Post-Exploitation Techniques: Major Vulnerabilities Discovered in Ivanti and FortiGate VPNs

• Vulnerability

Akamai Unveils New VPN Post-Exploitation Techniques: Major Vulnerabilities Discovered in Ivanti and FortiGate VPNs

do son August 12, 2024

Akamai researchers have exposed a series of vulnerabilities and techniques that could allow threat actors to further...

Read More Read more about Akamai Unveils New VPN Post-Exploitation Techniques: Major Vulnerabilities Discovered in Ivanti and FortiGate VPNs

Security Flaw in PostgreSQL: CVE-2024-7348 Allows Arbitrary SQL Execution

• Vulnerability

Security Flaw in PostgreSQL: CVE-2024-7348 Allows Arbitrary SQL Execution

do son August 12, 2024

The PostgreSQL project has issued a security advisory, warning users of a serious vulnerability (CVE-2024-7348). The flaw,...

Read More Read more about Security Flaw in PostgreSQL: CVE-2024-7348 Allows Arbitrary SQL Execution

GhostWrite: New RISC-V Vulnerability Enables Full Device Takeover

• Vulnerability

GhostWrite: New RISC-V Vulnerability Enables Full Device Takeover

do son August 12, 2024

A team of researchers from the CISPA Helmholtz Center for Information Security has disclosed a critical vulnerability,...

Read More Read more about GhostWrite: New RISC-V Vulnerability Enables Full Device Takeover

Windows Users Beware: CVE-2024-6768 – New ‘Blue Screen of Death’ Vulnerability Affects All

• Vulnerability

Windows Users Beware: CVE-2024-6768 – New ‘Blue Screen of Death’ Vulnerability Affects All

do son August 12, 2024

A newly discovered vulnerability in the Windows operating system has raised concerns among cybersecurity experts due to...

Read More Read more about Windows Users Beware: CVE-2024-6768 – New ‘Blue Screen of Death’ Vulnerability Affects All

QuickShell Security Flaw Exposes Google Quick Share Users to Remote Attacks

• Vulnerability

QuickShell Security Flaw Exposes Google Quick Share Users to Remote Attacks

do son August 12, 2024

Google’s Quick Share, a popular tool for file sharing across Android, Windows, and Chrome OS devices, has...

Read More Read more about QuickShell Security Flaw Exposes Google Quick Share Users to Remote Attacks

CVE-2024-5651: RCE Vulnerability in Fence Agents Exposes Critical Infrastructure to Exploitation

• Vulnerability

CVE-2024-5651: RCE Vulnerability in Fence Agents Exposes Critical Infrastructure to Exploitation

do son August 12, 2024

A high-severity security vulnerability (CVE-2024-5651, CVSS 8.8) has been discovered in fence agents, a vital component of...

Read More Read more about CVE-2024-5651: RCE Vulnerability in Fence Agents Exposes Critical Infrastructure to Exploitation

CVE-2024-7589: OpenSSH Pre-Authentication Vulnerability in FreeBSD Exposes Systems to RCE

• Vulnerability

CVE-2024-7589: OpenSSH Pre-Authentication Vulnerability in FreeBSD Exposes Systems to RCE

do son August 11, 2024

In a recent security advisory, the FreeBSD Project disclosed a critical vulnerability (CVE-2024-7589) in OpenSSH, the widely-used...

Read More Read more about CVE-2024-7589: OpenSSH Pre-Authentication Vulnerability in FreeBSD Exposes Systems to RCE

PoC Exploit Releases for Cisco SSM On-Prem Account Takeover (CVE-2024-20419) Flaw

• Vulnerability

PoC Exploit Releases for Cisco SSM On-Prem Account Takeover (CVE-2024-20419) Flaw

do son August 11, 2024

A critical vulnerability, identified as CVE-2024-20419, has been publicly disclosed by security researcher Mohammed Adel, who published...

Read More Read more about PoC Exploit Releases for Cisco SSM On-Prem Account Takeover (CVE-2024-20419) Flaw

Simple Coding Errors Lead to Major Ransomware Takedown

• Cyber Security
• Vulnerability

Simple Coding Errors Lead to Major Ransomware Takedown

do son August 11, 2024

A security researcher averted significant financial losses for six companies that could have fallen victim to cyberattacks....

Read More Read more about Simple Coding Errors Lead to Major Ransomware Takedown

Dark Skippy: New Threat Steals Secret Keys from Signing Devices

• Vulnerability

Dark Skippy: New Threat Steals Secret Keys from Signing Devices

do son August 11, 2024

A serious security threat called Dark Skippy has emerged in the cryptocurrency world. This method allows malicious...

Read More Read more about Dark Skippy: New Threat Steals Secret Keys from Signing Devices

CVE-2024-38200: Zero-Day Vulnerability in Microsoft Office: A Call for Urgent Action

• Vulnerability

CVE-2024-38200: Zero-Day Vulnerability in Microsoft Office: A Call for Urgent Action

do son August 11, 2024

In a recent advisory published on August 8th, Microsoft disclosed a high-severity zero-day vulnerability affecting multiple versions...

Read More Read more about CVE-2024-38200: Zero-Day Vulnerability in Microsoft Office: A Call for Urgent Action

GL-iNet Routers Exposed to Critical Vulnerabilities: Urgent Firmware Updates Required

• Vulnerability

GL-iNet Routers Exposed to Critical Vulnerabilities: Urgent Firmware Updates Required

do son August 10, 2024

GL-iNet has recently issued a security advisory addressing multiple critical vulnerabilities in several of their router models....

Read More Read more about GL-iNet Routers Exposed to Critical Vulnerabilities: Urgent Firmware Updates Required

Django Releases Security Updates to Address Critical Flaw (CVE-2024-42005, CVSS 9.8)

• Vulnerability

Django Releases Security Updates to Address Critical Flaw (CVE-2024-42005, CVSS 9.8)

do son August 9, 2024

The Django team has issued security updates for Django 5.0.8 and 4.2.15 to address multiple vulnerabilities, including...

Read More Read more about Django Releases Security Updates to Address Critical Flaw (CVE-2024-42005, CVSS 9.8)

Team82 Unveils Research on Unitronics PLC/HMI Attacks Targeting Critical Infrastructure

• Vulnerability

Team82 Unveils Research on Unitronics PLC/HMI Attacks Targeting Critical Infrastructure

do son August 9, 2024

Recently, the cybersecurity research team known as Team82 has published an in-depth investigation into a series of...

Read More Read more about Team82 Unveils Research on Unitronics PLC/HMI Attacks Targeting Critical Infrastructure

Windows Smart App Control, SmartScreen Vulnerable to Exploits

• Vulnerability

Windows Smart App Control, SmartScreen Vulnerable to Exploits

do son August 9, 2024

Cybersecurity specialists have discovered significant flaws in the protective mechanisms of Microsoft Windows—Smart App Control (SAC) and...

Read More Read more about Windows Smart App Control, SmartScreen Vulnerable to Exploits