Saturday, December 2, 2023

ToddyCat APT Hackers Exploiting Vulnerable Microsoft Exchange Servers

ToddyCat, a highly skilled advanced persistent threat (APT) actor notorious for launching targeted attacks in Europe and Asia, has recently upgraded its arsenal of...

Junos OS Flaw Allows Attackers to Flood System and Expose Sensitive Data

Three new vulnerabilities have been discovered in Junos OS: password disclosure, MAC address validation bypass, and Time-of-check Time-of-use (TOCTOU) Race Condition. The severity of...

Google Chrome Use-after-free Flaw Let Attackers Perform Heap Exploitation

The latest stable version of Google Chrome (version 118.0.5993.70) has been released for Mac and Linux.In contrast, the Windows version has been updated...

Multiple Citrix NetScaler Flaw Leads to DoS Attack and Data Exposure

Critical vulnerabilities in Citrix NetScaler ADC and NetScaler Gateway have exposed sensitive information and a denial of service attack.A malicious cyber actor can exploit one of...

3 Zero-days and 100+ vulnerabilities Fixed in Microsoft Security Update

Microsoft has published its October security patches in which over 100 vulnerabilities were fixed in multiple Microsoft products, including Windows 10, Windows 11, Windows...

D-Link Wi-Fi Range Extender Vulnerability Let Attackers Inject Remote Code

A command injection vulnerability has been discovered in the D-Link DAP-X1860 range extender, allowing threat actors to execute remote code on affected devices. The...

Mirai-based DDoS Attackers Aggressively Adopted New Router Exploits

In September 2023, FortiGuard Labs' vigilant team uncovered a significant development in the IZ1H9 Mirai-based DDoS campaign. This campaign, known for its aggressive tactics, had...

MacOS “DirtyNIB” Vulnerability: Let Attackers Execute Malicious Code

A new zero-day vulnerability has been discovered in Apple’s macOS systems, which allows threat actors to execute code on behalf of a legitimate Apple...

Maintainers of a Popular Open Source Tool Warns of Critical Curl Vulnerability

Two new vulnerabilities have been discovered in the widely used Curl tool. These two vulnerabilities are identified as CVE-2023-38545 and CVE-2023-38546. One of these...

Video Surveillance Camera Flaw Allows Attackers to Change Passwords & Alarms

Pablo Martínez, a member of the Red Team at cybersecurity firm Entelgy Innotec Security, has uncovered significant vulnerabilities in low-cost video surveillance cameras available...

Managed WAF protection


Recent Articles