Category: CyberSecurityNews

AWS CDK Vulnerabilities Let Attackers Gain Admin Access to AWS Accounts
25
Oct
2024

AWS CDK Vulnerabilities Let Attackers Gain Admin Access to AWS Accounts

Security researchers from Aquasec recently discovered a critical vulnerability in the AWS Cloud Development Kit (CDK) that could allow attackers…

Hackers Using Weaponized RDP Setup Files to Attack Windows Servers
25
Oct
2024

Hackers Using Weaponized RDP Setup Files to Attack Windows Servers

A new sophisticated phishing campaign targeting government agencies, industrial enterprises, and military units in Ukraine and potentially other countries has…

CISA Warns of Cisco ASA & Roundcube Vulnerabilities Exploited in Wild
25
Oct
2024

CISA Warns of Cisco ASA & Roundcube Vulnerabilities Exploited in Wild

The Cybersecurity and Infrastructure Security Agency (CISA) has announced the addition of two new vulnerabilities to its Known Exploited Vulnerabilities…

FortiManager Devices Mass Compromise Exploiting CVE-2024-47575 Vulnerability
25
Oct
2024

FortiManager Devices Mass Compromise Exploiting CVE-2024-47575 Vulnerability

Shadowserver has issued a critical warning about the widespread exploitation of Fortinet FortiManager devices using the recently disclosed CVE-2024-47575 vulnerability….

DarkComet RAT – A Remote Access Tool Lets Attackers Remotely Control Windows
24
Oct
2024

DarkComet RAT – A RAT Tools Lets Attackers Remotely Control Windows

DarkComet, a stealthy Remote Access Trojan, silently infiltrates systems, stealing sensitive data like credentials and passwords. It also acts as…

Managed SIEM Pricing
24
Oct
2024

Managed SIEM Pricing: A Guide to Cost and Value

When it comes to protecting your business from increasingly sophisticated cyber threats, a Managed Security Information and Event Management (SIEM)…

Cisco ASA Vulnerability  Remote Attacker Execute Commands As Root User
24
Oct
2024

Critical Cisco ASA Flaw Allows SSH Remote Command Injection

A critical vulnerability has been identified in the Cisco Adaptive Security Appliance (ASA) Software, posing a significant security risk to…

U.S. Govt Announces Rewards Up To Million For Info On Iranian Hackers
24
Oct
2024

U.S. Govt Announces Rewards Up To $10 Million For Info On Iranian Hackers

The U.S. Department of State’s Rewards for Justice program has launched a major initiative offering up to $10 million for…

CISA Warns Active Exploitation of Microsoft SharePoint Vulnerability
24
Oct
2024

CISA Warns Active Exploitation of Microsoft SharePoint Vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) has added a new vulnerability to its Known Exploited Vulnerabilities Catalog following evidence…

Embargo Ransomware Actors Abuses Safe Mode To Disable Security Solutions
24
Oct
2024

Embargo Ransomware Actors Abuses Safe Mode To Disable Security Solutions

Safe Mode is an operating system diagnostic mode. It is primarily used to troubleshoot issues by loading only essential “drivers”…

GitLab Patches Critical HTML Injection Flaw Leading To XSS Attacks
24
Oct
2024

GitLab Patches Critical HTML Injection Flaw Leading To XSS Attacks

GitLab has released new patch versions 17.5.1, 17.4.3, and 17.3.6 for both its Community Edition (CE) and Enterprise Edition (EE)….

Cisco ASA & FTD VPNs Vulnerability
24
Oct
2024

Cisco ASA & FTD VPNs Vulnerability Actively Exploited in Attacks

Cisco has disclosed a critical vulnerability in its Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software that is…