Internet Security

Apple addressed a new actively exploited zero-day tracked as CVE-2023-38606

July 25, 2023 add comment
Apple released security updates to address an actively exploited zero-day flaw in iOS, iPadOS, macOS, tvOS, watchOS, and Safari. Apple released urgent security updates to address multiple flaws in iOS, iPadOS,... Read more »

Twelve Norwegian ministries were hacked using a zero-day vulnerability

July 25, 2023 add comment
Threat actors exploited a zero-day flaw in third-party software in attacks against the ICT platform used by 12 Norwegian ministries. The ICT platform used by twelve ministries of the... Read more »

A flaw in OpenSSH forwarded ssh-agent allows remote code execution

July 24, 2023 add comment
A new flaw in OpenSSH could be potentially exploited to run arbitrary commands remotely on compromised hosts under specific conditions. Researchers from the Qualys Threat Research Unit (TRU) have... Read more »

Experts warn of OSS supply chain attacks against the banking sector

July 24, 2023 add comment
Checkmark researchers have uncovered the first known targeted OSS supply chain attacks against the banking sector. In the first half of 2023, Checkmarx researchers detected multiple open-source software supply chain... Read more »

Apple could opt to stop iMessage and FaceTime services due to the government’s surveillance demands

July 24, 2023 add comment
Apple could opt to pull iMessage and FaceTime services in the U.K. in response to the government’s surveillance demands. In light of the government’s surveillance demands, Apple might consider... Read more »

Security Affairs newsletter Round 429 by Pierluigi Paganini – International edition

July 23, 2023 add comment
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new... Read more »

Shadowserver reported that +15K Citrix servers are likely vulnerable to attacks exploiting the flaw CVE-2023-3519

July 23, 2023 add comment
Researchers reported that more than 15000 Citrix servers exposed online are likely vulnerable to attacks exploiting the vulnerability CVE-2023-3519. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) this week... Read more »

Multiple DDoS botnets were observed targeting Zyxel devices

July 22, 2023 add comment
Researchers warn of several DDoS botnets exploiting a critical flaw tracked as CVE-2023-28771 in Zyxel devices. Fortinet FortiGuard Labs researchers warned of multiple DDoS botnets exploiting a vulnerability impacting... Read more »

CISA warns of attacks against Citrix NetScaler ADC and Gateway Devices

July 21, 2023 add comment
The US CISA warns of cyber attacks targeting Citrix NetScaler Application Delivery Controller (ADC) and Gateway devices. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warning of cyber attacks... Read more »

Experts believe North Korea behind JumpCloud supply chain attack

July 21, 2023 add comment
SentinelOne researchers attribute the recent supply chain attacks on JumpCloud to North Korea-linked threat actors. JumpCloud is a cloud-based directory service platform designed to manage user identities, devices, and... Read more »
Subscribe to our Newsletter