Tag: zero-day
-
Surge in exploits of zero-day vulnerabilities is ‘new normal’ warns Five Eyes alliance
by
in SecurityNewsFirst seen on therecord.media Jump to article: therecord.media/surge-zero-day-exploits-five-eyes-report
-
New Citrix Zero-Day Vulnerability Allows Remote Code Execution
by
in SecurityNewswatchTowr has found a flaw in Citrix’s Session Recording Manager that can be exploited to enable unauthenticated RCE against Citrix Virtual Apps and Desktops First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/new-citrix-zeroday-vulnerability/
-
ISMG Editors: US Election Impact on Cybersecurity, HIPAA
by
in SecurityNews
Tags: ai, cybersecurity, election, google, government, healthcare, HIPAA, intelligence, privacy, update, zero-dayAlso: Potential Government Policy Changes; AI-Driven Zero-Day Discoveries. In the latest weekly update, ISMG editors discussed how the recent election results may reshape U.S. cybersecurity policy and healthcare privacy under HIPAA and the groundbreaking role of artificial intelligence in Google’s recent discovery of a critical zero-day vulnerability. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/ismg-editors-us-election-impact-on-cybersecurity-hipaa-a-26775
-
Ivanti zero-day vulnerabilities exploited in chained attack
by
in SecurityNewsThe new exploit chains targeting Ivanti Cloud Service Application customers are connected to a previously disclosed critical path traversal flaw, CVE-… First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366613041/Ivanti-zero-day-vulnerabilities-exploited-in-chained-attack
-
Breach Roundup: Chinese Cyberespionage Using Open-Source VPN
by
in SecurityNews
Tags: breach, china, cybercrime, cyberespionage, germany, google, hacker, hacking, mfa, okta, open-source, ransomware, vpn, zero-dayAlso: Ransomware Hackers Demand Baguettes. This week, Chinese spying, Italian hacking scandal, an FBI warning and Okta fixed a bug. Google mandated MFA, zero days in PTZOptics and a Mexican airport didn’t pay ransom. Cybercriminals demanded baguettes, breach lettersin Ohio and Germany will shield white hats. The Italian DPA rebuked a bank. First seen on…
-
Neue Zero-Day-Spoofing-Schwachstelle in Windows – Microsofts Patch für CVE-2024-21320 ist nutzlos
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/sicherheitsluecke-cve-2024-21320-patch-leaking-ntlm-anmeldedaten-a-3b0ef2b5c786558a92ef33c2da2f4997/
-
70 Zero-Day-Lücken ausgenutzt: Pwn2Own-Hacker knacken Samsung Galaxy S24 und mehr
by
in SecurityNewsFirst seen on golem.de Jump to article: www.golem.de/news/70-zero-day-luecken-ausgenutzt-pwn2own-hacker-knacken-samsung-galaxy-s24-und-mehr-2410-190238.html
-
High-severity Qualcomm zero-day vulnerability under attack
by
in SecurityNewsQualcomm urges customers to patch the memory corruption vulnerability as Google researchers have observed targeted exploitation in the wild against th… First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366612994/High-severity-Qualcomm-zero-day-vulnerability-under-attack
-
Microsoft repairs 2 zero-days on October Patch Tuesday
by
in SecurityNewsFirst seen on techtarget.com Jump to article: www.techtarget.com/searchwindowsserver/news/366613059/Microsoft-repairs-2-zero-days-on-October-Patch-Tuesday
-
Five zero-days to be fixed on October Patch Tuesday
by
in SecurityNewsFirst seen on computerweekly.com Jump to article: www.computerweekly.com/news/366613194/Five-zero-days-to-be-fixed-on-October-Patch-Tuesday
-
CVSS 9.8 für ScienceLogic SL1 Day-Schwachstelle in ScienceLogic-Monitoring
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/-rackspace-warnung-sciencelogic-schwachstelle-update-a-f4569fd7f0bd9e251be849563276c808/
-
Breach Roundup: Chinese Cyberespionage Using Open Source VPN
by
in SecurityNews
Tags: breach, china, cybercrime, cyberespionage, germany, google, hacker, hacking, mfa, okta, open-source, ransomware, vpn, zero-dayAlso: Ransomware Hackers Demand Baguettes. This week, Chinese spying, Italian hacking scandal, an FBI warning and Okta fixed a bug. Google mandated MFA, zero days in PTZOptics and a Mexican airport didn’t pay ransom. Cybercriminals demanded baguettes, breach lettersin Ohio and Germany will shield white hats. The Italian DPA rebuked a bank. First seen on…
-
Wiz CEO and Co-Founder Assaf Rappaport: From Zero-Day to Hero
by
in SecurityNewsFresh off a $1 billion funding round, Wiz has shot to fame as one of the fastest-growing, impactful cloud security startups ever. And one of the most … First seen on techcrunch.com Jump to article: techcrunch.com/video/wiz-ceo-and-co-founder-assaf-rappaport-from-zero-day-to-hero/
-
Google fixes two Android zero-days used in targeted attacks
by
in SecurityNewsFirst seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-fixes-two-android-zero-days-used-in-targeted-attacks/
-
Windows Themes 0-Day Bug Exposes Users To NTLM Credential Theft
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36541/Windows-Themes-0-Day-Bug-Exposes-Users-To-NTLM-Credential-Theft.html
-
Fortinet finds more malicious IPs linked to widely exploited zero-day
by
in SecurityNewsThe cybersecurity vendor said the additional indicators of compromise don’t reflect any major changes. Researchers warn thousands of devices remain ex… First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/fortinet-cve-indicators-compromise/731616/
-
Google Patched 40 Security Vulnerabilities Along With Two Zero-Days
by
in SecurityNewsGoogle has released a batch of security updates addressing 40 vulnerabilities, two of which are critical zero-day exploits. As reported in the Novembe… First seen on gbhackers.com Jump to article: gbhackers.com/google-patched-40-security-vulnerabilities/
-
Google AI Agent Finds Zero-Day in Popular Database Engine
by
in SecurityNewsNow-Fixed Flaw Is Big Sleep’s First Real-World Bug Find, Say Researchers. Google’s highly experimental artificial intelligence agent Big Sleep has aut… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/google-ai-agent-finds-zero-day-in-popular-database-engine-a-26730
-
Lazarus Group Exploits Google Chrome Vulnerability to Control Infected Devices
by
in SecurityNewsThe North Korean threat actor known as Lazarus Group has been attributed to the zero-day exploitation of a now-patched security flaw in Google Chrome … First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/lazarus-group-exploits-google-chrome.html
-
Inoffizieller Fix für 0-day Windows-Themes-Schwachstelle
by
in SecurityNewsIn Windows (7 bis 11) gibt es eine Windows Themes Spoofing-Schwachstelle, die bisher nicht durch Microsoft geschlossen wurde. Die Entwickler von ACROS… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/10/30/inoffizieller-fix-fuer-0-day-windows-themes-schwachstelle/
-
PTZOptics cameras zero-days actively exploited in the wild
by
in SecurityNewsHackers are exploiting two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957, in PTZOptics cameras. Threat actors are attempting to… First seen on securityaffairs.com Jump to article: securityaffairs.com/170456/hacking/ptzoptics-cameras-flaws-exploited.html
-
Synology hurries out patches for zero-days exploited at Pwn2Own
by
in SecurityNewsSynology, a Taiwanese network-attached storage (NAS) appliance maker, patched two critical zero-days exploited during last week’s Pwn2Own hacking comp… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/synology-fixed-two-critical-zero-days-exploited-at-pwn2own-within-days/
-
Open Source LLM Tool Sniffs Out Python Zero-Days
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/application-security/open-source-llm-tool-finds-python-zero-days
-
Active exploitation of PTZOptics zero-days underway
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/active-exploitation-of-ptzoptics-zero-days-underway
-
Hackers target critical zero-day vulnerability in PTZ cameras
by
in SecurityNewsHackers are attempting to exploit two zero-day vulnerabilities in PTZOptics pan-tilt-zoom (PTZ) live streaming cameras used in industrial, healthcare,… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hackers-target-critical-zero-day-vulnerability-in-ptz-cameras/
-
QNAP fixed second zero-day demonstrated at Pwn2Own Ireland 2024
by
in SecurityNewsQNAP addressed the second zero-day vulnerability demonstrated by security researchers during the recent Pwn2Own Ireland 2024. Taiwanese manufacturer Q… First seen on securityaffairs.com Jump to article: securityaffairs.com/170423/security/qnap-fixed-second-zero-day-demonstrated-pwn2own-ireland-2024.html
-
ACROS Releases Unofficial Fixes for Windows Themes Zero-Day
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/acros-releases-unofficial-fixes-for-windows-themes-zero-day
-
Critical QNAP HBS zero-day addressed
by
in SecurityNews
Tags: zero-dayFirst seen on scworld.com Jump to article: www.scworld.com/brief/critical-qnap-hbs-zero-day-addressed
-
QNAP fixed NAS backup zero-day demonstrated at Pwn2Own Ireland 2024
by
in SecurityNewsQNAP fixed critical zero-day CVE-2024-50388 which was demonstrated against a TS-464 NAS device during the Pwn2Own Ireland 2024 competition. QNAP addre… First seen on securityaffairs.com Jump to article: securityaffairs.com/170386/uncategorized/qnap-fixed-zero-day-cve-2024-50388-pwn2own-ireland-2024.html
-
Unofficial fixes issued for Windows Themes zero-day
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/unofficial-fixes-issued-for-windows-themes-zero-day