Tag: zero-day
-
70% of exploited flaws disclosed in 2023 were zero-days
Mandiant security analysts warn of a worrying new trend of threat actors demonstrating a better capability to discover and exploit zero-day vulnerabil… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-70-percent-of-exploited-flaws-disclosed-in-2023-were-zero-days/
-
Zero-Day Alert: Three Critical Ivanti CSA Vulnerabilities Actively Exploited
by
in SecurityNewsIvanti has warned that three new security vulnerabilities impacting its Cloud Service Appliance (CSA) have come under active exploitation in the wild…. First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/zero-day-alert-three-critical-ivanti.html
-
Malicious ads exploited Internet Explorer zero day to drop malware
by
in SecurityNewsThe North Korean hacking group ScarCruft launched a large-scale attack in May that leveraged an Internet Explorer zero-day flaw to infect targets with… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/malicious-ads-exploited-internet-explorer-zero-day-to-drop-malware/
-
Firefox 131 Update Patches Exploited Zero-Day Vulnerability
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36458/Firefox-131-Update-Patches-Exploited-Zero-Day-Vulnerability.html
-
Windows spoofing flaw exploited in earlier zero-day attacks
by
in SecurityNewsMicrosoft reveals that CVE-2024-43461, which was disclosed in September’s Patch Tuesday, was previously exploited as a zero-day vulnerability in an at… First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366610775/Windows-spoofing-flaw-exploited-in-earlier-zero-day-attacks
-
Zero-day Flaws Exposed EV Chargers to Shutdowns and Data Theft
by
in SecurityNewsFirst seen on hackread.com Jump to article: hackread.com/zero-day-flaws-ev-chargers-to-shutdowns-data-theft/
-
Four zero-days included in group of 79 vulnerabilities Microsoft discloses, including one with 9.8 severity score
by
in SecurityNewsFirst seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/microsoft-patch-tuesday-september-2024/
-
Nation-state actor exploited three Ivanti CSA zero-days
by
in SecurityNewsAn alleged nation-state actor exploited three zero-day vulnerabilities in Ivanti Cloud Service Appliance (CSA) in recent attacks. Fortinet FortiGuard … First seen on securityaffairs.com Jump to article: securityaffairs.com/169778/apt/ivanti-cloud-service-appliance-three-zero.html
-
5 Zero-Days in Microsoft’s October Update to Patch Immediately
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/5-cves-microsofts-october-2024-update-patch-now
-
Microsoft Confirms Exploited Zero-Day In Windows Management Console
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36450/Microsoft-Confirms-Exploited-Zero-Day-In-Windows-Management-Console.html
-
Week in review: Microsoft fixes two exploited zero-days, SOC teams are losing trust in security tools
by
in SecurityNewsHere’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft patches two zero-days exploited in the wil… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/10/13/week-in-review-microsoft-fixes-two-exploited-zero-days-soc-teams-are-losing-trust-in-security-tools/
-
Chinese State Hackers Main Suspect in Recent Ivanti CSA Zero-Day Attacks
Fortinet believes state-sponsored threat actors are behind the recent attacks involving exploitation of Ivanti CSA zero-days. The post Chinese State H… First seen on securityweek.com Jump to article: www.securityweek.com/ivanti-csa-zero-day-exploitation-attributed-to-state-sponsored-hackers/
-
Trio of Ivanti CSA zero-day vulnerabilities under exploit threat
by
in SecurityNewsFirst seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/ivanti-zero-day-vulnerabilities-exploitation/729354/
-
Microsoft adressiert Zero-Day-Schwachstellen
by
in SecurityNewsFirst seen on csoonline.com Jump to article: www.csoonline.com/de/a/microsoft-adressiert-zero-day-schwachstellen
-
Recent Firefox Zero-Day Exploited Against Tor Browser Users
by
in SecurityNewsTor browser version 13.5.7 is rolling out with patches for an exploited zero-day vulnerability recently addressed in Firefox. The post Recent Firefox … First seen on securityweek.com Jump to article: www.securityweek.com/recent-firefox-zero-day-exploited-against-tor-browser-users/
-
Mozilla Warns Of Firefox Zero-Day Actively Exploited In Cyber Attacks
by
in SecurityNewsA critical use-after-free vulnerability affecting Firefox and Firefox Extended Support Release (ESR) is being actively exploited in cyberattacks. With… First seen on gbhackers.com Jump to article: gbhackers.com/firefox-zero-day-exploited/
-
Hackers Exploiting Zero-day Flaw in Qualcomm Chips to Attack Android Users
by
in SecurityNewsHackers exploit a zero-day vulnerability found in Qualcomm chipsets, potentially affecting millions worldwide. The flaw, identified as CVE-2024-43047,… First seen on gbhackers.com Jump to article: gbhackers.com/hackers-exploiting-zero-day-flaw-in-qualcomm-chips/
-
Researchers Win $70K for Reporting Zero-Day Flaws in EV Chargers
by
in SecurityNewsFirst seen on hackread.com Jump to article: hackread.com/researchers-win-reporting-ev-chargers-zero-day-flaws/
-
Three CSA Zero-Days Are Being Exploited in Attacks
by
in SecurityNewsFirst seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ivanti-three-csa-zerodays/
-
Microsoft Fixes Five Zero-Days in October Patch Tuesday
by
in SecurityNewsFirst seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/microsoft-five-zerodays-patch/
-
Microsoft Patches 117 CVEs: Focus on Critical and Zero-Day Threats
by
in SecurityNewsMicrosoft has released the October 2024 Patch Tuesday, addressing a total of 117 Common Vulnerabilities and Exposures (CVEs). This month’s Microsoft P… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/microsoft-patch-tuesday-2/
-
Zero-Day-Lücke in Qualcomm-Mobilprozessoren bereits vereinzelt angegriffen
by
in SecurityNewsEtliche Snapdragon-Chips für Android-Geräte weisen eine als kritisch eingestufte Sicherheitslücke auf. Sie wurde schon vereinzelt und gezielt ausgenut… First seen on heise.de Jump to article: www.heise.de/news/Zero-Day-Luecke-in-Qualcomm-Mobilprozessoren-bereits-vereinzelt-angegriffen-9977340.html
-
Zero-Day-Exploit zeigt beunruhigenden Trend – Immer mehr Angriffe auf Internetanbieter
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/-cyberangriffe-internet-service-provider-sicherheitsluecken-praevention-a-aad01b7bab0c01a0ecf080a5b3b28ecc/
-
Actively exploited Firefox zero-day fixed, update ASAP! (CVE-2024-9680)
by
in SecurityNewsMozilla has pushed out an emergency update for its Firefox and Firefox ESR browsers to fix a vulnerability (CVE-2024-9680) that is being exploited in … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/10/10/cve-2024-9680/
-
Patch Tuesday: Microsoft Fixes Management Console RCE Zero-Day
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/patch-tuesday-microsoft-fixes-management-console-rce-zero-day
-
Three new Ivanti CSA zero-day actively exploited in attacks
by
in SecurityNewsSoftware company Ivanti released security patches for three new CSA zero-day vulnerabilities actively exploited in attacks. Ivanti warned of three new… First seen on securityaffairs.com Jump to article: securityaffairs.com/169553/hacking/ivanti-csa-zero-days-actively-exploited.html
-
Four zero-days fixed for September Patch Tuesday
by
in SecurityNewsMost corrections this month focus on the Windows OS, but enterprises that rely on SQL Server or SharePoint should prioritize deploying the security up… First seen on techtarget.com Jump to article: www.techtarget.com/searchwindowsserver/news/366610256/Four-zero-days-fixed-for-September-Patch-Tuesday
-
Zero-day vulnerability rolled back previous patches
by
in SecurityNewsOn Patch Tuesday, Microsoft addresses a critical zero-day vulnerability that reversed previous fixes for older vulnerabilities and put Windows 10 syst… First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366610421/Microsoft-Zero-day-vulnerability-rolled-back-previous-patches
-
Qualcomm fixed a zero-day exploited limited, targeted attacks
by
in SecurityNewsQualcomm warns of 20 flaws in its products, including a potential zero-day vulnerability, in the DSP service that impacts multiple chipsets. Qualcomm … First seen on securityaffairs.com Jump to article: securityaffairs.com/169540/hacking/qualcomm-zero-day-exploited-targeted-attacks.html
-
Mozilla fixes Firefox zero-day actively exploited in attacks
by
in SecurityNewsMozilla has issued an emergency security update for the Firefox browser to address a critical use-after-free vulnerability that is currently exploited… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/mozilla-fixes-firefox-zero-day-actively-exploited-in-attacks/