Tag: zero-day
-
Chromium zero-day leveraged by North Korean hackers
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/chromium-zero-day-leveraged-by-north-korean-hackers
-
China’s Volt Typhoon Exploits Zero-Day in Versa’s SD-WAN Director Servers
by
in SecurityNewsSo far, the threat actor has compromised at least five organizations using CVE-2024-39717; CISA has added bug to its Known Exploited Vulnerability dat… First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/china-s-volt-typhoon-actively-exploiting-now-patched-0-day-in-versa-director-servers
-
PoC Exploit Released For 0-Day Windows Kernel Privilege Escalation Vulnerability
by
in SecurityNewsMicrosoft released several patches for multiple vulnerabilities during the Patch Tuesday for August 2024. One of the vulnerabilities listed by Microso… First seen on gbhackers.com Jump to article: gbhackers.com/windows-0-day-poc-exploit/
-
Google Patches Actively Exploited Android 0-day Privilege Escalation Vulnerability
by
in SecurityNewsGoogle has released a patch addressing a critical zero-day vulnerability that has been actively exploited. This vulnerability, CVE-2024-32896, is a pr… First seen on gbhackers.com Jump to article: gbhackers.com/google-patchesandroid-0-day-vulnerability/
-
CVE-2024-7971: North Korean APT Citrine Sleet Exploits Chromium Zero-Day
by
in SecurityNewsIn a recent cybersecurity report, Microsoft Threat Intelligence has revealed that a North Korean threat actor, believed to be Citrine Sleet, has been … First seen on securityonline.info Jump to article: securityonline.info/cve-2024-7971-north-korean-apt-citrine-sleet-exploits-chromium-zero-day/
-
Volt Typhoon Hackers Exploit Zero-Day Vulnerability in Versa Director Servers Used by MSPs, ISPs
by
in SecurityNewsFirst seen on techrepublic.com Jump to article: www.techrepublic.com/article/volt-typhoon-exploits-versa-director/
-
Volt Typhoon exploiting zero-day in campaign targeting ISPs, MSPs
by
in SecurityNews<figure><div><img src=https://www.cybersecuritydive.com/imgproxy/AeYaSLh-KQ8pm8YqsHv7gEs_SUnUxcjXJLlvxSJWLlQ/g:ce/bG9jYWw6Ly8vZGl2ZWltY… First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/volt-typhoon-zero-day-isps-msps/725492/
-
North Korean Hackers Actively Exploiting Chromium RCE Zero-Day In The Wild
by
in SecurityNews
Tags: exploit, hacker, microsoft, north-korea, rce, remote-code-execution, threat, vulnerability, zero-dayMicrosoft has identified a North Korean threat actor, Citrine Sleet, exploiting a zero-day vulnerability in Chromium (CVE-2024-7971) to gain remote co… First seen on gbhackers.com Jump to article: gbhackers.com/chromium-rce-zero-day-in-the-wild/
-
Unpatchable Zero Day In Surveillance Cam Is Being Exploited To Install Mirai
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36271/Unpatchable-Zero-Day-In-Surveillance-Cam-Is-Being-Exploited-To-Install-Mirai.html
-
WPS Office Zero Day Exploited By South Korea Linked Cyber Spies
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36266/WPS-Office-Zero-Day-Exploited-By-South-Korea-Linked-Cyber-Spies.html
-
Microsoft Says North Korean Cryptocurrency Thieves Behind Chrome Zero-Day
by
in SecurityNewsRedmond’s threat intel team said exploitation of CVE-2024-7971 can be attributed to a North Korean APT targeting the cryptocurrency sector for financi… First seen on securityweek.com Jump to article: www.securityweek.com/microsoft-says-north-korean-cryptocurrency-thieves-behind-chrome-zero-day/
-
Google Fixes Zero-Day Chrome Flaw in V8
First seen on duo.com Jump to article: duo.com/decipher/google-fixes-zero-day-chrome-flaw-in-v8
-
Operation DevilTiger: APT12’s Shadowy Tactics and Zero-Day Exploits Unveiled
by
in SecurityNewsThe QiAnXin Threat Intelligence Center has disclosed the technical details of a sophisticated cyber espionage campaign dubbed >>Operation DevilTiger,
-
North Korean Hackers Tied to Exploits of Chromium Zero-Day
by
in SecurityNewsCryptocurrency Users Targeted in Latest Campaign Involving FudModule Rootkit. A hacking group tied to North Korea exploited a zero-day vulnerability i… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/north-korean-hackers-tied-to-exploits-chromium-zero-day-a-26181
-
North Korea-linked APT Citrine Sleet exploit Chrome zero-day to deliver FudModule rootkit
by
in SecurityNewsNorth Korea-linked APT exploited the recently patched Google Chrome zero-day CVE-2024-7971 to deploy the FudModule rootkit. North Korea-linked group C… First seen on securityaffairs.com Jump to article: securityaffairs.com/167848/breaking-news/north-korea-linked-apt-exploited-chrome-zero-day-cve-2024-7971.html
-
North Korean hackers exploit Chrome zero-day to deploy rootkit
by
in SecurityNewsNorth Korean hackers have exploited a recently patched Google Chrome zero-day (CVE-2024-7971) to deploy the FudModule rootkit after gaining SYSTEM pri… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/north-korean-hackers-exploit-chrome-zero-day-to-deploy-rootkit/
-
Suspected North Korean hackers targeted crypto industry with Chromium zero-day
by
in SecurityNewsFirst seen on therecord.media Jump to article: therecord.media/suspected-north-korean-hackers-crypto-chromium-zero-day
-
South Korea-linked group APT-C-60 exploited a WPS Office zero-day
South Korea-linked group APT-C-60 exploited a zero-day in the Windows version of WPS Office to target East Asian countries. South Korea-linked group A… First seen on securityaffairs.com Jump to article: securityaffairs.com/167825/hacking/apt-c-60-wps-office-zero-day.html
-
Verbesserte Erkennung von Zero-Day-Phishing-Kampagnen
by
in SecurityNewsDie Sicherheitsforscher von Check Point Software Technologies haben eine bedeutende Verbesserung in der Erkennung und Abwehr von Phishing- und Malware… First seen on netzpalaver.de Jump to article: netzpalaver.de/2024/08/27/verbesserte-erkennung-von-zero-day-phishing-kampagnen/
-
Operation DevilTiger, APT Hackers 0-Day Exploitation Tactics Exposed
by
in SecurityNewsThe APT-Q-12 group, also known as Pseudo Hunter, is a Northeast Asian threat actor linked to Darkhotel, which primarily targets East Asian countries, … First seen on gbhackers.com Jump to article: gbhackers.com/deviltiger-apt-zero-day/
-
South Korean Spies Exploit WPS Office Zero-Day
by
in SecurityNewsFirst seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/south-korean-spies-exploit-wps/
-
Chinese Hackers Exploit Zero-Day Cisco Switch Flaw to Gain System Control
by
in SecurityNewsDetails have emerged about a China-nexus threat group’s exploitation of a recently disclosed, now-patched security flaw in Cisco switches as a zero-da… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/chinese-hackers-exploit-zero-day-cisco.html
-
Resurrecting Internet Explorer: Threat Actors Using Zero-day Tricks in Internet Shortcut File to Lure Victims (CVE-2024-38112)
by
in SecurityNewsy Haifei Li Introduction and Background Check Point Research recently discovered that threat actors have been using novel (or previously unknown) tric… First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2024/resurrecting-internet-explorer-threat-actors-using-zero-day-tricks-in-internet-shortcut-file-to-lure-victims-cve-2024-38112/
-
South Korean hackers exploited WPS Office zero-day to deploy malware
by
in SecurityNewsThe South Korea-aligned cyberespionage group APT-C-60 has been leveraging a zero-day code execution vulnerability in the Windows version of WPS Office… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/apt-c-60-hackers-exploited-wps-office-zero-day-to-deploy-spyglace-malware/
-
Malware exploits 5-year-old zero-day to infect end-of-life IP cameras
by
in SecurityNewsThe Corona Mirai-based malware botnet is spreading through a 5-year-old remote code execution (RCE) zero-day in AVTECH IP cameras, which have been dis… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/malware-exploits-5-year-old-zero-day-to-infect-end-of-life-ip-cameras/
-
ESET Uncovers Zero-Day Vulnerabilities in WPS Office, Exploited by APT-C-60
by
in SecurityNewsESET researchers have identified two severe vulnerabilities in WPS Office for Windows, widely exploited by the APT-C-60 cyberespionage group, which is… First seen on securityonline.info Jump to article: securityonline.info/eset-uncovers-zero-day-vulnerabilities-in-wps-office-exploited-by-apt-c-60/
-
Chinese Hackers Deploy VersaMem Web Shell via Versa Director Zero-Day (CVE-2024-39717)
by
in SecurityNewsBlack Lotus Labs, a threat intelligence team within Lumen Technologies, has uncovered the active exploitation of a zero-day vulnerability in Versa Dir… First seen on securityonline.info Jump to article: securityonline.info/chinese-hackers-deploy-versamem-web-shell-via-versa-director-zero-day-cve-2024-39717/
-
Google Patches Ninth Chrome Zero Day Of 2024
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36252/Google-Patches-Ninth-Chrome-Zero-Day-Of-2024.html
-
Chinese Velvet Ant Uses Cisco Zero-Day to Deploy Custom Malware
by
in SecurityNewsFirst seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/chinese-velvet-ant-cisco-0day/
-
Versa Director Zero-day Vulnerability Let Attackers Upload Malicious Files
by
in SecurityNewsVersa Networks specializes in successful business. It offers Secure Access Service Edge (SASE), consolidating networking and security services in a si… First seen on gbhackers.com Jump to article: gbhackers.com/versa-director-zero-day-vulnerability-attack/