Tag: zero-day
-
Samsung zero-day flaw actively exploited in the wild
by
in SecurityNewsGoogle’s Threat Analysis Group (TAG) researchers warn of a Samsung zero-day vulnerability that is exploited in the wild. Google’s Threat Analysis Grou… First seen on securityaffairs.com Jump to article: securityaffairs.com/170119/security/samsung-zero-day-activey-exploited.html
-
Fortinet Confirms Zero-Day Exploit Targeting FortiManager Systems
by
in SecurityNewsFortinet confirms zero-day exploits hitting critical (CVSS severity score 9.8/10) remote code execution bug in the FortiManager platform. The post For… First seen on securityweek.com Jump to article: www.securityweek.com/fortinet-confirms-zero-day-exploit-targeting-fortimanager-systems/
-
Hackers Probing Newly Disclosed Fortinet Zero Day
Mandiant Says High-Severity Flaw Could Give Attackers Remote Unauthenticated Access. Researchers at Mandiant say a new threat cluster first observed J… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/hackers-probing-newly-disclosed-fortinet-zero-day-a-26624
-
Usefree-Fehler – Kritischer Zero-Day-Angriff auf Firefox und Thunderbird
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/mozilla-aktualisiert-firefox-thunderbird-sicherheitsluecken-geschlossen-a-a408115998d292f583d76d1cbf469d98/
-
Lazarus hackers used fake DeFi game to exploit Google Chrome zero-day
by
in SecurityNewsThe North Korean Lazarus hacking group exploited a Google Chrome zero-day tracked as CVE-2024-4947 through a fake decentralized finance (DeFi) game ta… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/lazarus-hackers-used-fake-defi-game-to-exploit-google-chrome-zero-day/
-
Fortinet warns of new critical FortiManager flaw used in zero-day attacks
by
in SecurityNewsFortinet publicly disclosed today a critical FortiManager API vulnerability, tracked as CVE-2024-47575, that was exploited in zero-day attacks to stea… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fortinet-warns-of-new-critical-fortimanager-flaw-used-in-zero-day-attacks/
-
Hackers exploit 52 zero-days on the first day of Pwn2Own Ireland
by
in SecurityNewsOn the first day of Pwn2Own Ireland, participants demonstrated 52 zero-day vulnerabilities across a range of devices, earning a total of $486,250 in c… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hackers-exploit-52-zero-days-on-the-first-day-of-pwn2own-ireland/
-
Exploring the Transformative Potential of AI in Cybersecurity
By continuously learning from new data, ML models can adapt to evolving threat landscapes, making them invaluable in identifying zero-day vulnerabilit… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/exploring-the-transformative-potential-of-ai-in-cybersecurity/
-
Fortinet Discloses Actively Exploited Zero-Day
by
in SecurityNewsU.S. Federal Government Gives Agencies Three Weeks to Patch or Mitigate. Fortinet disclosed an actively exploited vulnerability in its centralized man… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/fortinet-discloses-actively-exploited-zero-day-a-26602
-
Nation-State Attackers Exploiting Ivanti CSA Flaws for Network Infiltration
A suspected nation-state adversary has been observed weaponizing three security flaws in Ivanti Cloud Service Appliance (CSA) a zero-day to perform a … First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/nation-state-attackers-exploiting.html
-
New AI Tool To Discover 0-Days At Large Scale With A Click Of A Button
by
in SecurityNewsVulnhuntr, a static code analyzer using large language models (LLMs), discovered over a dozen zero-day vulnerabilities in popular open-source AI proje… First seen on gbhackers.com Jump to article: gbhackers.com/ai-0-day-discovery-tool/
-
FortiJump: Yet Another Critical Fortinet 0-Day RCE
by
in SecurityNewsFirst seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/fortinet-fortijump-0day-richixbw/
-
Threat Actors Exploit Zero Days Within 5 Days, Says Mandiant
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36491/Threat-Actors-Exploit-Zero-Days-Within-5-Days-Says-Mandiant.html
-
Zero-day exploits swelled in 2023: Mandiant
by
in SecurityNewsFirst seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/zero-day-exploits-rise-mandiant/730265/
-
Google Warns of Samsung Zero-Day Exploited in the Wild
by
in SecurityNewsA zero-day vulnerability in Samsung mobile processors has been abused as part of an exploit chain for arbitrary code execution. The post Google Warns … First seen on securityweek.com Jump to article: www.securityweek.com/google-warns-of-samsung-zero-day-exploited-in-the-wild/
-
Serious Adversaries Circle Ivanti CSA Zero-Day Flaws
Suspected nation-state actors are spotted stringing together three different zero-days in the Ivanti Cloud Services Application to gain persistent acc… First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/serious-adversaries-circle-ivanti-csa-flaws
-
Researchers Debut AI Tool That Helps Detect Zero-Days
by
in SecurityNewsVulnerability Tool Detected Flaws in OpenAI and Nvidia APIs Used in GitHub Projects. Security researchers have developed an AI tool that can detect re… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/researchers-debut-ai-tool-that-helps-detect-zero-days-a-26575
-
North Korea-linked APT37 exploited IE zero-day in a recent attack
by
in SecurityNews
Tags: attack, exploit, group, Internet, korea, north-korea, supply-chain, threat, vulnerability, zero-dayNorth Korea-linked group APT37 exploited an Internet Explorer zero-day vulnerability in a supply chain attack. A North Korea-linked threat actor, trac… First seen on securityaffairs.com Jump to article: securityaffairs.com/169983/apt/north-korea-apt37-ie-zero-day.html
-
Hackers targeted Android users by exploiting zero-day bug in Qualcomm chips
by
in SecurityNewsFirst seen on techcrunch.com Jump to article: techcrunch.com/2024/10/09/hackers-were-targeting-android-users-with-qualcomm-zero-day/
-
North Korean Hackers Exploit Zero-Day Flaw (CVE-2024-38178) in >>Operation Code on Toast<<
by
in SecurityNewsA joint report by AhnLab Security Emergency response Center (ASEC) and the National Cyber Security Center (NCSC) has revealed a new zero-day vulnerabi… First seen on securityonline.info Jump to article: securityonline.info/north-korean-hackers-exploit-zero-day-flaw-cve-2024-38178-in-operation-code-on-toast/
-
Android-Geräte in Gefahr: Zero-Day-Lücke in Qualcomm-Chips wird aktiv ausgenutzt
by
in SecurityNewsFirst seen on golem.de Jump to article: www.golem.de/news/android-geraete-in-gefahr-zero-day-luecke-in-qualcomm-chips-wird-aktiv-ausgenutzt-2410-189708.html
-
Firefox Zero-Day Under Attack: Update Your Browser Immediately
Mozilla has revealed that a critical security flaw impacting Firefox and Firefox Extended Support Release (ESR) has come under active exploitation in … First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/mozilla-warns-of-active-exploitation-in.html
-
Critical Mozilla Firefox Zero-Day Allows Code Execution
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/critical-mozilla-firefox-zero-day-code-execution
-
North Korean APT Exploited IE Zero-Day in Supply Chain Attack
by
in SecurityNewsA Pyongyang-aligned APT was caught exploiting a recent zero-day in Internet Explorer in a supply chain attack. The post North Korean APT Exploited IE … First seen on securityweek.com Jump to article: www.securityweek.com/north-korean-apt-exploited-ie-zero-day-in-supply-chain-attack/
-
64 betroffene Chipsätze in Millionen von Geräte Day-Schwachstelle in Qualcomm-Prozessoren
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/qualcomm-bestaetigt-behebt-zero-day-schwachstelle-mobilen-prozessoren-a-256ed4b1e8ca9ecfe268378879f3e0e8/
-
Threat actors exploit zero days within 5 days, says Google’s Mandiant
First seen on scworld.com Jump to article: www.scworld.com/news/threat-actors-exploit-zero-days-within-5-days-says-googles-mandiant
-
Windows Zero-Day Leveraged for ROKRat Malware Delivery
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/windows-zero-day-leveraged-for-rokrat-malware-delivery
-
Zero-days account for most exploited bugs last year
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/zero-days-account-for-most-exploited-bugs-last-year
-
Zero-Days Account for Most Exploited Bugs in 2023
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/zero-days-account-for-most-exploited-bugs-in-2023
-
70% of exploited flaws disclosed in 2023 were zero-days
Mandiant security analysts warn of a worrying new trend of threat actors demonstrating a better capability to discover and exploit zero-day vulnerabil… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-70-percent-of-exploited-flaws-disclosed-in-2023-were-zero-days/