Daily CyberSecurity • Page 489 of 734 • Zero-hour alerts. Unmatched analysis.

Microsoft Researcher to Unveil 4 OpenVPN Zero-Day Vulnerabilities at Black Hat USA 2024 OpenVPN Connect macOS vulnerability macOS privilege escalation fix OVPNX - OpenVPN Zero-Day

OpenVPN Connect macOS vulnerability macOS privilege escalation fix OVPNX - OpenVPN Zero-Day

Microsoft Researcher to Unveil 4 OpenVPN Zero-Day Vulnerabilities at Black Hat USA 2024

Do Son May 2, 2024

Microsoft’s Senior Security Researcher Vladimir Tokarev will detail a series of critical zero-day vulnerabilities in OpenVPN, the...

CVE-2024-30251: Denial of Service Vulnerability in aiohttp Threatens Web Services

Do Son May 2, 2024

A severe security flaw has been identified in aiohttp, the widely used open-source library that enables asynchronous...

Compromised Routers: Tool of Choice for Crime & Espionage Ubiquiti EdgeRouter vulnerability

Compromised Routers: Tool of Choice for Crime & Espionage

Do Son May 2, 2024

A new report by TrendMicro lifts the veil on the shadowy world of router exploitation. Those unassuming...

CVE-2024-33530: Jitsi Meet Flaw Leaks Meeting Passwords, Exposing Calls to Intruders

Do Son May 2, 2024

Security researcher Florian Port at Insinuator recently uncovered a critical flaw in Jitsi Meet, the popular open-source...

Microsoft Graph API Exploited for Stealthy Attacks Microsoft Graph API C&C

Microsoft Graph API Exploited for Stealthy Attacks

Do Son May 2, 2024

A new trend is gaining momentum among cybercriminals—utilizing Microsoft’s Graph API for sinister purposes. This trend highlights...

Mal.Metrica Malware Exploits WordPress Vulnerabilities: 17,000+ Sites Hit

Do Son May 2, 2024

Beware of that seemingly harmless “Verify that you are a human” pop-up window the next time you...

CVE-2024-32114: High-Severity Vulnerability Exposed in Apache ActiveMQ

Do Son May 2, 2024

Apache ActiveMQ, widely regarded as the most popular open-source, multi-protocol, Java-based message broker, facilitates communication across a...

Cisco IP Phones Exposed: Vulnerabilities Allow Hackers to Disrupt, Spy, and Even Make Calls CVE-2024-20321 & CVE-2024-20267

Cisco IP Phones Exposed: Vulnerabilities Allow Hackers to Disrupt, Spy, and Even Make Calls

Do Son May 2, 2024

Cisco has issued a security advisory highlighting multiple vulnerabilities in the firmware of several IP Phone models...

CVE-2024-32971: Critical Vulnerability in Apollo Router Compromises Data Integrity Apollo Router CVE-2024-32971 vulnerability

CVE-2024-32971: Critical Vulnerability in Apollo Router Compromises Data Integrity

Do Son May 2, 2024

A critical-severity vulnerability, identified as CVE-2024-32971 with a CVSS score of 9.1, has been discovered in versions...

Iran’s APT42 Spies Target NGOs, Clouds in Espionage Campaign APT42

Iran’s APT42 Spies Target NGOs, Clouds in Espionage Campaign

Do Son May 2, 2024

A new report by cybersecurity firm Mandiant has revealed the inner workings of APT42, an Iranian state-sponsored...

CVE-2024-32962 (CVSS 10): Critical Vulnerability in XML-Crypto Affects Millions

Do Son May 1, 2024

A significant security flaw has been discovered in the widely used XML-Crypto npm package, a tool integral...

Dropbox Sign Data Breach: What You Need to Know and How to Protect Yourself

Do Son May 1, 2024

Dropbox confirmed a security breach on April 24th within its Dropbox Sign (formerly HelloSign) service, exposing customer...

New Cuttlefish Malware Evades Detection, Targets SOHO Routers

Do Son May 1, 2024

Security researchers at Lumen Technologies’ Black Lotus Labs have uncovered a sophisticated new malware campaign targeting enterprise-grade...

Adload Adware Quickly Evades Apple’s Expanded XProtect

Do Son May 1, 2024

A recent update of Apple’s XProtect security framework, which included an unprecedented 74 new rules targeting the...

“Dirty Stream” Vulnerability Pattern Uncovered: New Threat Imperils Popular Android Apps

Do Son May 1, 2024

Security researchers at Microsoft Threat Intelligence have revealed a critical vulnerability pattern affecting a wide array of...

HPE Aruba Networking Patches Critical Vulnerabilities in Mobility Controllers and Gateways CVE-2024-26305 _ CVE-2025-23058 Aruba 5G Core Open Redirect

CVE-2024-26305 _ CVE-2025-23058 Aruba 5G Core Open Redirect

HPE Aruba Networking Patches Critical Vulnerabilities in Mobility Controllers and Gateways

Do Son May 1, 2024

Recently, HPE Aruba Networking announced a comprehensive update to its ArubaOS software, targeting multiple critical vulnerabilities that...

“Goldoon” Botnet Exploits Unpatched D-Link Devices Goldoon Botnet Operation False Siren Red Alert Spyware

“Goldoon” Botnet Exploits Unpatched D-Link Devices

Do Son May 1, 2024

Security researchers at FortiGuard Labs have uncovered a new botnet campaign. Dubbed “Goldoon,” this botnet is ruthlessly...

TargetCompany Ransomware Group Escalates Attacks: New Tools and Persistent Targeting of MS-SQL Servers

Do Son May 1, 2024

The world of cybersecurity is witnessing an alarming trend as ransomware groups intensify their attacks on Microsoft...

SonicWall Patches GMS Flaws to Block Data Breaches and Bypass Attacks SonicWall Zero-Day, SMA1000 Exploit Chain SonicWall, firewall configuration CVE-2024-29010 & CVE-2024-29011 SonicWall NetExtender VPN Vulnerability

SonicWall Zero-Day, SMA1000 Exploit Chain SonicWall, firewall configuration CVE-2024-29010 & CVE-2024-29011 SonicWall NetExtender VPN Vulnerability

SonicWall Patches GMS Flaws to Block Data Breaches and Bypass Attacks

Do Son April 30, 2024

SonicWall has released a security patch for its Global Management System (GMS) software, addressing two vulnerabilities that...

ArcaneDoor Campaign: Cisco Zero-Day Vulnerabilities Threaten 162K Hosts Worldwide

Do Son April 30, 2024

Recent findings by Cisco Talos have unveiled a coordinated threat actor campaign dubbed “ArcaneDoor,” targeting government-owned network...