Tag: Vulnerability

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

Threat actors are exploiting security flaws in TBK DVR and end‑of‑life (EoL) TP-Link Wi-Fi routers to deploy Mirai-botnet variants on …

18 April 2026

DDoS, Mirai, Security Pro, Variant, Vulnerability
CISA tells feds to patch 13-year-old Apache ActiveMQ bug under active attack

CISA is sounding the alarm on a newly-exploited Apache ActiveMQ bug, ordering federal agencies to patch within two weeks as attackers …

17 April 2026

Apache ActiveMQ, Apache Software Foundation, CISA, Security Pro, Vulnerability
NIST Drops NVD Enrichment for Pre-March 2026 Vulnerabilities

The team behind the US National Vulnerability Database (NVD) can’t keep up with the explosion of new reported vulnerabilities, said a top …

16 April 2026

IT, NIST, NVD, Security Pro, Vulnerability
How DAST Identifies Real-World Application Vulnerabilities

The tech that powers modern applications is highly dynamic. Today’s app architectures rely on APIs, third-party integrations, and runtime …

14 April 2026

Application, DAST, How, Security Pro, Vulnerability
ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers

A critical security vulnerability impacting ShowDoc, a document management and collaboration service popular in China, has come under …

14 April 2026

Flaws, Security Pro, Servers, Threat Intelligence, Vulnerability
Adobe Reader Zero-Day Exploited to Steal Data via Malicious PDFs

Hackers have been exploiting an as-yet unidentified flaw in Adobe Reader since at least November 2025. This zero-day vulnerability was …

9 April 2026

Malicious, PDFs, Security Pro, Vulnerability, Zero Days
‘BlueHammer’ Exploit Targets Windows, Potentially Impacting 1 Billion+ Devices

A researcher released a working ‘BlueHammer’ Windows zero-day exploit that could impact over 1 billion devices, granting SYSTEM-level …

8 April 2026

Devices, Security Pro, Targets, Vulnerability, Windows
GrafanaGhost Vulnerability Allows Data Theft via AI Injection

Cybersecurity researchers at the firm Noma Security have identified a serious vulnerability named GrafanaGhost. This flaw affects Grafana, …

7 April 2026

AI, Grafana, IT, Security Pro, Vulnerability
Smashing Security podcast #461: This man hid $400 million in a fishing rod. Then it vanished

A cannabis-growing, beekeeping, gyrocopter-flying Irishman invested his drug money in Bitcoin back in 2011 – and now sits on a fortune …

1 April 2026

IT, Podcasts, Privacy, Security Pro, Vulnerability
TeamPCP Explores Ways to Exploit Stolen Supply Chain Secrets

Researchers have observed a “dangerous convergence” between supply chain attackers and extortion gangs like Lapsus$ as TeamPCP looks to …

31 March 2026

Secrets, Security Pro, Stolen, Supply Chains, Vulnerability
OpenAI Codex Vulnerability Allowed Attackers to Steal GitHub Tokens

BeyondTrust Phantom Labs researchers have revealed a critical command injection vulnerability in OpenAI’s Codex. The flaw allowed …

30 March 2026

BeyondTrust, ChatGPT, Security Pro, Tokens, Vulnerability
Security Researchers Sound the Alarm on Vulnerabilities in AI-Generated Code

How Georgia Tech Tracks Flaws Introduced by AI Coding Tools The Vibe Security Radar aims to track vulnerabilities directly introduced by AI …

26 March 2026

Alarms, Codes, Security Pro, Sounds, Vulnerability

{"loadingDistance":1200,"stickyPosts":[],"nextPageLink":"https://itts.at/archives/tag/vulnerability/page/2","queryId":2}

●●●