Daily CyberSecurity • Page 475 of 735 • Zero-hour alerts. Unmatched analysis.

Fickle Stealer: A Rust-Based Stealer with Evolving Attack Chains and Flexible Targeting fickle-1

Fickle Stealer: A Rust-Based Stealer with Evolving Attack Chains and Flexible Targeting

Do Son June 19, 2024

FortiGuard Labs’ recent report on Fickle Stealer reveals a sophisticated and adaptable cyber threat that warrants closer...

CVE-2023-32191 (CVSS 10) in Rancher Kubernetes Engine Exposes Sensitive Credentials

Do Son June 18, 2024

A critical vulnerability has been discovered in the Rancher Kubernetes Engine (RKE), a widely used Kubernetes distribution...

New Undetected Diamorphine Rootkit Targets Linux Systems

Do Son June 18, 2024

Cybersecurity researchers at Avast have unearthed a new and previously undetected variant of the Diamorphine Linux kernel...

CVE-2024-5671 (CVSS 9.8) Exposes Trellix Intrusion Prevention System to Remote Attacks CVE-2024-5671 and CVE-2024-5731

CVE-2024-5671 (CVSS 9.8) Exposes Trellix Intrusion Prevention System to Remote Attacks

Do Son June 18, 2024

Trellix, a prominent cybersecurity provider, has issued urgent patches for two critical vulnerabilities discovered in its Intrusion...

QR Code Phishing Attacks Escalate: Sophisticated Campaign Targets Chinese Citizens

Do Son June 18, 2024

A new wave of cybercrime is sweeping across China, exploiting the convenience and widespread use of QR...

2FA Bypass and More: Inside ONNX Store, the Phishing Threat to Your Finances

Do Son June 18, 2024

EclecticIQ analysts have recently discovered a sophisticated phishing-as-a-service (PhaaS) platform called ONNX Store, targeting financial institutions worldwide....

Malvertising Campaign Uses Fake Installers to Spread Oyster Backdoor

Do Son June 18, 2024

Rapid7, a cybersecurity firm, has uncovered a recent malvertising campaign using fake software installers to distribute the...

CVE-2024-37079, CVE-2024-37080: Critical VMware vCenter Server Vulnerabilities Demand Immediate Action

Do Son June 18, 2024

In a security advisory released today, Broadcom revealed multiple critical vulnerabilities in VMware vCenter Server, the widely...

CVE-2024-37902 (CVSS 10): Critical Flaw in Deep Java Library Opens Door to System Takeover

Do Son June 17, 2024

A critical vulnerability (CVE-2024-37902) has been discovered in the Deep Java Library (DJL), a widely-used open-source framework...

CVE-2024-6047 (CVSS 9.8): Urgent Security Risk for GeoVision Users

Do Son June 17, 2024

Taiwan’s CERT has issued a critical security warning regarding a severe vulnerability (CVE-2024-6047) affecting various end-of-life (EOL)...

XenForo Issues Urgent Security Patch to Thwart Remote Code Execution Threat CVE-2024-38457 & CVE-2024-38458

XenForo Issues Urgent Security Patch to Thwart Remote Code Execution Threat

Do Son June 17, 2024

Popular forum software platform, XenForo, has released an urgent security patch to address a critical vulnerability that...

Operation Celestial Force: A Persistent Multi-Component Threat Targeting Indian Entities

Do Son June 17, 2024

Cisco Talos, the threat intelligence division of Cisco Systems, has published a comprehensive report detailing a long-running...

Pandora FMS Reveals High-Risk Security Flaws Affecting 50,000+ Installations The vulnerabilities, assigned CVEs 2024-35304 through 2024-35307, affect Pandora FMS versions 700 to 776 and have received high CVSS scores

The vulnerabilities, assigned CVEs 2024-35304 through 2024-35307, affect Pandora FMS versions 700 to 776 and have received high CVSS scores

Pandora FMS Reveals High-Risk Security Flaws Affecting 50,000+ Installations

Do Son June 17, 2024

Pandora FMS, the renowned open-source monitoring application with over 50,000 installations globally, has issued a critical security...

TA571 and ClearFake Use Social Engineering to Deliver PowerShell Malware

Do Son June 17, 2024

Proofpoint researchers have discovered a sophisticated social engineering technique that leverages clipboard manipulation to deliver malware through...

D-Link Routers Exposed: Critical Backdoor Vulnerability Discovered (CVE-2024-6045)

Do Son June 16, 2024

Taiwan’s CERT (Computer Emergency Response Team) has issued a critical security advisory regarding a high-severity vulnerability (CVE-2024-6045)...

BlastRADIUS Vulnerability (CVE-2024-3596): Flaw in RADIUS Protocol Exposes Networks to Attack BlastRADIUS Vulnerability CVE-2024-3596

BlastRADIUS Vulnerability (CVE-2024-3596): Flaw in RADIUS Protocol Exposes Networks to Attack

Do Son June 16, 2024

A newly identified vulnerability (CVE-2024-3596), dubbed “BlastRADIUS,” has been uncovered in the RADIUS protocol, posing a critical...

New Cybercrime Wave: UNC3944 Exploits SaaS Vulnerabilities UNC3944

New Cybercrime Wave: UNC3944 Exploits SaaS Vulnerabilities

Do Son June 16, 2024

Mandiant, a renowned cybersecurity firm, has issued a warning about the evolving tactics of the financially motivated...

CVE-2024-3105 (CVSS 9.9) in Woody Code Snippets Plugin Threatens 70,000+ WordPress Sites

Do Son June 16, 2024

A critical security vulnerability has been discovered in the Woody Code Snippets plugin for WordPress, a popular...

Linux Malware DISGOMOJI Targets Indian Officials UTA0137

Linux Malware DISGOMOJI Targets Indian Officials

Do Son June 16, 2024

Cybersecurity firm Volexity has revealed a new cyber-espionage campaign targeting Indian government entities, employing a custom-built malware...

Critical Security Vulnerability CVE-2024-3912 (CVSS 9.8) Hits ASUS Routers

Do Son June 16, 2024

Taiwan’s CERT has issued a critical security alert regarding a severe vulnerability (CVE-2024-3912) found in multiple ASUS...