Tag: zero-day
-
Zero-day Cisco switch bug being exploited by cyber actors
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/zero-day-cisco-switch-bug-being-exploited-by-cyber-actors
-
Actively Exploited Chrome Zero-Day Patched by Google
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/actively-exploited-chrome-zero-day-patched-by-google
-
Attackers Leverage Zero-Day Cisco Switch Bug
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/attackers-leverage-zero-day-cisco-switch-bug
-
China-Linked ‘Velvet Ant’ Hackers Exploited Zero-Day to Deploy Malware on Cisco Nexus Switches
by
in SecurityNewsHackers gained access to the switch using valid administrator credentials, and then ‘jailbroke’ from the application level into the OS level. The post… First seen on securityweek.com Jump to article: www.securityweek.com/china-linked-velvet-ant-hackers-exploited-zero-day-to-deploy-malware-on-cisco-nexus-switches/
-
China-linked APT Velvet Ant exploited zero-day to compromise Cisco switches
China-linked APT group Velvet Ant exploited a recently disclosed zero-day in Cisco switches to take over the network appliance. Researchers at cyberse… First seen on securityaffairs.com Jump to article: securityaffairs.com/167423/apt/china-velvet-ant-zero-day-cisco-switches.html
-
Google patches ninth Chrome zero-day of 2024
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/news/google-patches-ninth-chrome-zero-day-of-2024
-
Google addressed the ninth actively exploited Chrome zero-day this year
by
in SecurityNewsGoogle released emergency security updates to fix the ninth actively exploited Chrome zero-day vulnerability this year. ‹‹Google released an emergency… First seen on securityaffairs.com Jump to article: securityaffairs.com/167403/hacking/9th-chrome-zero-day-2024-html.html
-
Lazarus Group Exploits Microsoft Zero-Days CVE-2024-38193, Patch Urgently
by
in SecurityNewsLast week, Microsoft addressed multiple high-severity security vulnerabilities in its security updates, some of which have already been exploited by h… First seen on securityonline.info Jump to article: securityonline.info/lazarus-group-exploits-microsoft-zero-days-cve-2024-38193-patch-urgently/
-
Google fixes ninth Chrome zero-day tagged as exploited this year
First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-fixes-ninth-actively-exploited-chrome-zero-day-in-2024/
-
Google fixes ninth Chrome zero-day exploited in attacks this year
First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-fixes-tenth-actively-exploited-chrome-zero-day-in-2024/
-
Google Patches Sixth Exploited Chrome Zero-Day of 2024
by
in SecurityNewsChrome 128 was released in the stable channel with patches for 38 vulnerabilities, including a V8 JavaScript engine flaw exploited in the wild. The po… First seen on securityweek.com Jump to article: www.securityweek.com/google-patches-sixth-exploited-chrome-zero-day-of-2024/
-
Patched Windows Zero-Day Used in Lazarus Attack
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/patched-windows-zero-day-used-in-lazarus-attack
-
Microsoft Issues Patches for 90 Flaws, Including 10 Critical Zero-Days
by
in SecurityNewsMicrosoft on Tuesday shipped fixes to address a total of 90 security flaws, including 10 zero-days, of which six have come under active exploitation i… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/microsoft-issues-patches-for-90-flaws.html
-
0-day in Windows driver exploited by North Korean hackers to deliver rootkit (CVE-2024-38193)
by
in SecurityNewsCVE-2024-38193, an actively exploited zero-day that Microsoft patched earlier this month, has been leveraged by North Korean hackers to install a root… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/08/20/0-day-in-windows-driver-exploited-by-north-korean-hackers-to-deliver-rootkit-cve-2024-38193/
-
Windows driver zero-day exploited by Lazarus hackers to install rootkit
by
in SecurityNewsThe notorious North Korean Lazarus hacking group exploited a zero-day flaw in the Windows AFD.sys driver to elevate privileges and install the FUDModu… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/windows-driver-zero-day-exploited-by-lazarus-hackers-to-install-rootkit/
-
Microsoft Zero-Day CVE-2024-38193 was exploited by North Korea-linked Lazarus APT
by
in SecurityNewsMicrosoft addressed a zero-day vulnerability actively exploited by the North-Korea-linked Lazarus APT group. Microsoft has addressed a zero-day vulner… First seen on securityaffairs.com Jump to article: securityaffairs.com/167246/apt/microsoft-zero-day-cve-2024-38193-lazarus.html
-
Microsoft Patches 9 Zero Days, 6 Exploited In The Wild
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36216/Microsoft-Patches-9-Zero-Days-6-Exploited-In-The-Wild.html
-
Microsoft Discloses 10 Zero-Day Bugs in Patch Tuesday Update
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/microsoft-discloses-10-zero-day-bugs-in-pacth-tuesday-update
-
North Korea Exploited Windows Zero-Day to Deploy Fudmodule
by
in SecurityNewsLazarus Espionage Group’s Sophisticated Malware Evades Antivirus Monitoring. North Korea’s Lazarus hacking team, which focuses on cryptocurrency theft… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/north-korea-exploited-windows-zero-day-to-deploy-fudmodule-a-26076
-
Windows Zero-Day Attack Linked to North Korea’s Lazarus APT
by
in SecurityNewsThe vulnerability, tracked as CVE-2024-38193 and marked as ‘actively exploited’ by Microsoft, allows SYSTEM privileges on the latest Windows operating… First seen on securityweek.com Jump to article: www.securityweek.com/windows-zero-day-attack-linked-to-north-koreas-lazarus-apt/
-
Lazarus Hacker Group Exploited Microsoft Windows Zero-day
by
in SecurityNewsThe notorious Lazarus hacker group has been identified as exploiting a zero-day vulnerability in Microsoft Windows, specifically targeting the Windows… First seen on gbhackers.com Jump to article: gbhackers.com/lazarus-microsoft-zero-day/
-
Microsoft Patched 6 Actively Exploited Zero-Day Flaws
by
in SecurityNewsPatch Tuesday brought updates for 90 security vulnerabilities, including patching severe remote code execution vulnerabilities and closing some doors … First seen on techrepublic.com Jump to article: www.techrepublic.com/article/microsoft-zero-day-vulnerabilities-exploited/
-
Copy2Pwn Zero-Day Exploited to Bypass Windows Protections
by
in SecurityNewsZDI details a zero-day named Copy2Pwn and tracked as CVE-2024-38213, which cybercriminals exploited to bypass MotW protections in Windows. The post Co… First seen on securityweek.com Jump to article: www.securityweek.com/copy2pwn-zero-day-exploited-to-bypass-windows-protections/
-
SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day
by
in SecurityNewsThe US cybersecurity agency CISA warns that a recent SolarWinds Web Help Desk vulnerability has been exploited in the wild. The post SolarWinds Web He… First seen on securityweek.com Jump to article: www.securityweek.com/solarwinds-web-help-desk-vulnerability-possibly-exploited-as-zero-day/
-
Microsoft Fixes Nine Zero-Days on Patch Tuesday
by
in SecurityNewsFirst seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/microsoft-fixes-nine-zerodays/
-
Microsoft patches 9 zero-days, 6 exploited in the wild
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/news/microsoft-patches-9-zero-days-6-exploited-in-the-wild
-
Contrast Security Introduces ADR to Help Organisations Combat Zero Days and Secure Applications from Within
by
in SecurityNewsWhile many organisations can defend against published application vulnerabilities, they often neglect to build security into the application productio… First seen on itsecurityguru.org Jump to article: www.itsecurityguru.org/2024/08/07/contrast-security-introduces-adr-to-help-organisations-combat-zero-days-and-secure-applications-from-within
-
Microsoft’s August 2024 Patch Tuesday Addresses 10 Zero-Days, 6 Exploited
by
in SecurityNewsOn Aug. 13, 2024, Microsoft released its latest batch of security updates as part of its Patch Tuesday program, addressing a total of 89 vulnerabiliti… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/microsofts-august-2024-patch-tuesday-addresses-10-zero-days-6-exploited/
-
Microsoft fixes 6 zero-days under active attack
by
in SecurityNewsAugust 2024 Patch Tuesday is here, and Microsoft has delivered fixes for 90 vulnerabilities, six of which have been exploited in the wild as zero-days… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/08/13/microsoft-zero-days-under-attack/