Tag: Vulnerability
-
Apple Vision Pro Vulnerability Exposed Virtual Keyboard Inputs to Attackers
Details have emerged about a now-patched security flaw impacting Apple’s Vision Pro mixed reality headset that, if successfully exploited, …
-
Hackers Exploiting Progress WhatsUp RCE Vulnerability In The Wild
RCE attacks on WhatsUp Gold exploited the Active Monitor PowerShell Script to execute malicious code, as the vulnerabilities CVE-2024-6670 …
-
Ransomware Disguised as a Game: Kransom’s Attack Through DLL Side-Loading
Kransom ransomware hides within the StarRail game using DLL side-loading and a legitimate certificate from COGNOSPHERE PTE. …
-
Ivanti Releases Urgent Security Updates for Endpoint Manager Vulnerabilities
Ivanti has released software updates to address multiple security flaws impacting Endpoint Manager (EPM), including 10 critical …
-
Adobe Security Update, Multiple Vulnerabilities Patched
This update, identified as APSB24-70, addresses multiple vulnerabilities that could allow attackers to execute arbitrary code on affected …
-
Emergency Fix Issued for 10/10 Severity Vulnerability in LoadMaster Products
Progress Software has released an emergency patch for a critical 10/10 severity vulnerability (CVE-2024-7591) in its LoadMaster products, …
-
Week in review: Vulnerability allows Yubico security keys cloning, Patch Tuesday forecast
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Vulnerability allows Yubico security …
-
Critical GeoServer Vulnerability Exploited in Global Malware Campaign
A critical GeoServer vulnerability (CVE-2024-36401) is being actively exploited, allowing attackers to take control of systems for malware …
-
Apache patches OFBiz bypass vulnerability
Apache patched a bypass vulnerability in its widely used Apache OFBiz open-source enterprise resource and planning software that could have …
-
Researcher Finds Unfixable Yet Tricky to Exploit Flaw in Yubikeys
Some versions of Yubikeys, one of the most widely used two-factor authentication (2FA) hardware tools, are vulnerable to side-channel …
-
Google Confirms CVE-2024-32896 Exploited in the Wild, Releases Android Security Patch
Google has released its monthly security updates for the Android operating system to address a known security flaw that it said has come …
-
Vulnerability allows Yubico security keys to be cloned
Researchers have unearthed a cryptographic vulnerability in popular Yubico (FIDO) hardware security keys and modules that may allow …
●●●