Uncategorized

Android flaw CVE-2024-43093 may be under limited, targeted exploitation

November 5, 2024 add comment
Google warned that a vulnerability, tracked as CVE-2024-43093, in the Android OS is actively exploited in the wild. Threat actors are actively exploiting a vulnerability, tracked as CVE-2024-43093, in... Read more »

QNAP fixed NAS backup zero-day demonstrated at Pwn2Own Ireland 2024

October 30, 2024 add comment
QNAP fixed critical zero-day CVE-2024-50388 which was demonstrated against a TS-464 NAS device during the Pwn2Own Ireland 2024 competition. QNAP addressed a critical zero-day vulnerability, tracked as CVE-2024-50388, which... Read more »

WordPress Jetpack plugin critical flaw impacts 27 million sites

October 15, 2024 add comment
WordPress Jetpack plugin issued an update to fix a critical flaw allowing logged-in users to view form submissions by others on the same site. The maintainers of the WordPress... Read more »

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 15

October 13, 2024 add comment
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Security Affairs Malware newsletter includes a collection of the best... Read more »

Critical NVIDIA Container Toolkit flaw could allow access to the underlying host

September 30, 2024 add comment
A critical vulnerability in the NVIDIA Container Toolkit could allow a container to escape and gain full access to the underlying host. Critical vulnerability CVE-2024-0132 (CVSS score 9.0) in... Read more »

The Vanilla Tempest cybercrime gang used INC ransomware for the first time in attacks on the healthcare sector

September 20, 2024 add comment
Microsoft warns that financially motivated threat actor Vanilla Tempest is using INC ransomware in attacks aimed at the healthcare sector in the U.S. Microsoft Threat Intelligence team revealed that... Read more »

UK NCA arrested a teenager linked to the attack on Transport for London

September 12, 2024 add comment
U.K. police arrested a 17-year-old teenager allegedly linked to the cyberattack on London’s public transportation agency, Transport for London. U.K.’s National Crime Agency announced the arrest of a 17-year-old... Read more »

Singapore Police arrest six men allegedly involved in a cybercrime syndicate

September 12, 2024 add comment
The Singapore Police Force (SPF) has arrested six individuals for their role in the operations of a cybercrime ring in the country. The Singapore Police Force (SPF) arrested five... Read more »

Ivanti fixed a maximum severity flaw in its Endpoint Management software (EPM)

September 11, 2024 add comment
Ivanti fixed a maximum severity flaw in its Endpoint Management software (EPM) that can let attackers achieve remote code execution on the core server Ivanti Endpoint Management (EPM) software... Read more »

Progress Software fixed a maximum severity flaw in LoadMaster

September 9, 2024 add comment
Progress Software released an emergency to address a maximum severity vulnerability in its LoadMaster products. Progress Software released an emergency fix for a critical vulnerability, tracked as CVE-2024-7591, that affects... Read more »
Subscribe to our Newsletter