Daily CyberSecurity

Hackers Exploit Foundation Software, Exposing Sensitive Contractor Data

• Cyber Security

Hackers Exploit Foundation Software, Exposing Sensitive Contractor Data

Do Son September 18, 2024 0

Recently, the cybersecurity company Huntress reported a new wave of cyberattacks targeting the widely-used Foundation Accounting Software,...

Read More Read more about Hackers Exploit Foundation Software, Exposing Sensitive Contractor Data

Cyberattack on Delta Prime: Losses Soar to $6M

• Cyber Security

Cyberattack on Delta Prime: Losses Soar to $6M

Do Son September 18, 2024 0

The Delta Prime platform fell victim to a cyberattack resulting in the theft of cryptocurrency worth approximately...

Read More Read more about Cyberattack on Delta Prime: Losses Soar to $6M

Chinese Engineer Indicted for Alleged Cyber Espionage Campaign Against US Aerospace Industry

• Cyber Security

Chinese Engineer Indicted for Alleged Cyber Espionage Campaign Against US Aerospace Industry

Do Son September 18, 2024 0

A Chinese national, Song Wu, has been indicted on 14 counts of wire fraud and 14 counts...

Read More Read more about Chinese Engineer Indicted for Alleged Cyber Espionage Campaign Against US Aerospace Industry

LibreOffice Vulnerability (CVE-2024-7788): Exploit of “Repair Mode” Signatures Raises Security Concerns

• Vulnerability

LibreOffice Vulnerability (CVE-2024-7788): Exploit of “Repair Mode” Signatures Raises Security Concerns

Do Son September 18, 2024 0

In a newly disclosed security advisory, The Document Foundation has revealed a high-severity vulnerability (CVE-2024-7788, CVSS 7.8)...

Read More Read more about LibreOffice Vulnerability (CVE-2024-7788): Exploit of “Repair Mode” Signatures Raises Security Concerns

Apple Hits Pause on iPadOS 18 for M4 iPad Pro Amid ‘Bricking’ Fears

• Technology

Apple Hits Pause on iPadOS 18 for M4 iPad Pro Amid ‘Bricking’ Fears

Do Son September 17, 2024 0

In an unexpected turn of events, Apple has pulled the plug on the iPadOS 18 update for...

Read More Read more about Apple Hits Pause on iPadOS 18 for M4 iPad Pro Amid ‘Bricking’ Fears

Microsoft Confirms CVE-2024-37985 as Zero-Day Bug in Windows

• Vulnerability

Microsoft Confirms CVE-2024-37985 as Zero-Day Bug in Windows

Do Son September 17, 2024 0

Today, Microsoft Security Response Center (MSRC) updated its security advisory to mark CVE-2024-37985 which was disclosed on...

Read More Read more about Microsoft Confirms CVE-2024-37985 as Zero-Day Bug in Windows

CISA Warns of Actively Exploited Adobe Flash Player Vulnerabilities

• Vulnerability

CISA Warns of Actively Exploited Adobe Flash Player Vulnerabilities

Do Son September 17, 2024 0

In a move that underscores the persistent threat of legacy software vulnerabilities, the U.S. Cybersecurity and Infrastructure...

Read More Read more about CISA Warns of Actively Exploited Adobe Flash Player Vulnerabilities

GitLab Releases Critical Security Patch for CVE-2024-45409 (CVSS 10) Vulnerability

• Vulnerability

GitLab Releases Critical Security Patch for CVE-2024-45409 (CVSS 10) Vulnerability

Do Son September 17, 2024 0

GitLab has issued an urgent security update addressing a critical vulnerability that affects both GitLab Community Edition...

Read More Read more about GitLab Releases Critical Security Patch for CVE-2024-45409 (CVSS 10) Vulnerability

Critical Flaws in Red Hat OpenShift: CVE-2024-45496 (CVSS 9.9) & CVE-2024-7387 (CVSS 9.1)

• Vulnerability

Critical Flaws in Red Hat OpenShift: CVE-2024-45496 (CVSS 9.9) & CVE-2024-7387 (CVSS 9.1)

Do Son September 17, 2024 0

Red Hat OpenShift, the industry-leading hybrid cloud platform, known for its robust security features and trusted by...

Read More Read more about Critical Flaws in Red Hat OpenShift: CVE-2024-45496 (CVSS 9.9) & CVE-2024-7387 (CVSS 9.1)

Cybercriminals Exploit CAPTCHA to Deliver Malware: Experts Issue Warning

• Malware

Cybercriminals Exploit CAPTCHA to Deliver Malware: Experts Issue Warning

Do Son September 17, 2024 0

Security professionals are sounding the alarm about a novel cyberattack vector: the use of counterfeit CAPTCHA tests...

Read More Read more about Cybercriminals Exploit CAPTCHA to Deliver Malware: Experts Issue Warning

PoC Exploit Releases for Unauthenticated RCE CVE-2024-40711 in Veeam Backup & Replication

• Vulnerability

PoC Exploit Releases for Unauthenticated RCE CVE-2024-40711 in Veeam Backup & Replication

Do Son September 17, 2024 0

In a major revelation for cybersecurity professionals, security researcher Sina Kheirkhah (@SinSinology) of watchTowr has published an...

Read More Read more about PoC Exploit Releases for Unauthenticated RCE CVE-2024-40711 in Veeam Backup & Replication

UNC2970’s Backdoor Deployed via Trojanized PDF Reader Targets Critical Infrastructure

• Cyber Security
• Malware

UNC2970’s Backdoor Deployed via Trojanized PDF Reader Targets Critical Infrastructure

Do Son September 17, 2024 0

Mandiant has unveiled a new wave of cyber-espionage attacks orchestrated by the North Korea-linked group UNC2970. This...

Read More Read more about UNC2970’s Backdoor Deployed via Trojanized PDF Reader Targets Critical Infrastructure

WooCommerce Skimmer Employs Stealthy Tactics to Pilfer Card Data

• Malware

WooCommerce Skimmer Employs Stealthy Tactics to Pilfer Card Data

Do Son September 17, 2024 0

In a detailed report by Ben Martin, a security analyst at Sucuri, a new and sophisticated credit...

Read More Read more about WooCommerce Skimmer Employs Stealthy Tactics to Pilfer Card Data

CVE-2024-38812: VMware’s 9.8 Severity Security Nightmare

• Vulnerability

CVE-2024-38812: VMware’s 9.8 Severity Security Nightmare

Do Son September 17, 2024 0

In a recent security advisory from Broadcom, VMware disclosed a critical vulnerability in its vCenter Server platform...

Read More Read more about CVE-2024-38812: VMware’s 9.8 Severity Security Nightmare

Cybercriminals Target US-Taiwan Defense Industry Conference with Stealthy Fileless Malware

• Cyber Security
• Malware

Cybercriminals Target US-Taiwan Defense Industry Conference with Stealthy Fileless Malware

Do Son September 17, 2024 0

In a concerning development, Cyble Research and Intelligence Labs (CRIL) has uncovered a sophisticated cyberattack aimed at...

Read More Read more about Cybercriminals Target US-Taiwan Defense Industry Conference with Stealthy Fileless Malware

PoC Exploit Released for Windows Hyper-V Zero-Day Vulnerability CVE-2024-38080

• Vulnerability

PoC Exploit Released for Windows Hyper-V Zero-Day Vulnerability CVE-2024-38080

Do Son September 16, 2024 0

Security researcher Pwndorei published a detailed analysis alongside a proof-of-concept (PoC) exploit code for a patched zero-day...

Read More Read more about PoC Exploit Released for Windows Hyper-V Zero-Day Vulnerability CVE-2024-38080

Zero-Click Calendar Invite: Critical macOS Vulnerability Chain Uncovered

• Vulnerability

Zero-Click Calendar Invite: Critical macOS Vulnerability Chain Uncovered

Do Son September 16, 2024 0

In a recent analysis, security researcher Mikko Kenttälä exposed a critical zero-click vulnerability chain in macOS, potentially...

Read More Read more about Zero-Click Calendar Invite: Critical macOS Vulnerability Chain Uncovered

166k+ Projects at Risk: AutoGPT’s Critical Vulnerability Explained – CVE-2024-6091 (CVSS 9.8)

• Vulnerability

166k+ Projects at Risk: AutoGPT’s Critical Vulnerability Explained – CVE-2024-6091 (CVSS 9.8)

Do Son September 16, 2024 0

A significant security vulnerability has been discovered in AutoGPT, a powerful AI tool designed to automate tasks...

Read More Read more about 166k+ Projects at Risk: AutoGPT’s Critical Vulnerability Explained – CVE-2024-6091 (CVSS 9.8)

Faraday: Open Source Vulnerability Management Platform

• Open Source Tool

Faraday: Open Source Vulnerability Management Platform

Do Son September 16, 2024 0

In today’s complex cybersecurity landscape, security teams face the dual challenge of uncovering new vulnerabilities and efficiently...

Read More Read more about Faraday: Open Source Vulnerability Management Platform

CISA Flags Two Actively Exploited Vulnerabilities: Critical Threats to Windows and WhatsUp Gold

• Cyber Security
• Malware
• Vulnerability

CISA Flags Two Actively Exploited Vulnerabilities: Critical Threats to Windows and WhatsUp Gold

Do Son September 16, 2024 0

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning, adding two actively exploited security...

Read More Read more about CISA Flags Two Actively Exploited Vulnerabilities: Critical Threats to Windows and WhatsUp Gold