Hackers Using Sitting Ducks Attack To Hijack Domains, 1 Million Domains Vulnerable
Over 1 million registered domains could be vulnerable to a cyberattack method known as “Sitting Ducks,” as recently unveiled in a new report from Infoblox…
Category: CyberSecurityNews
VMware vCenter Server RCE Vulnerability Actively Exploited in Attacks
Broadcom has issued an urgent warning that two critical vulnerabilities in VMware vCenter Server are now being actively exploited in the wild. The more severe…
Google Announces Shielded Email Feature To Hide Your Main Email Address
Google has unveiled a groundbreaking new feature called “Shielded Email” that aims to revolutionize email privacy and combat spam. This innovative tool allows Gmail users…
Apache HertzBeat Vulnerability Let Attackers Exfiltrate Sensitive Data
A recently discovered vulnerability in Apache HertzBeat, an open-source real-time monitoring tool, has raised concerns about potential data exfiltration. The security flaw, identified as CVE-2024-45791,…
Zohocorp ManageEngine ADAudit Plus Vulnerable To SQL Injection Attacks
Zohocorp’s ManageEngine has disclosed a critical vulnerability in its ADAudit Plus software during a significant cybersecurity development. It’s a popular tool used for Active Directory…
Citrix Virtual Apps & Desktops Vulnerability Actively Exploited in Attacks
A recently discovered vulnerability in Citrix Virtual Apps and Desktops is being actively exploited in the wild. The flaw, which allows for unauthenticated remote code…
Team Software Breach, Hackers Gain Unauthorized Access To Network Infrastructure
TEAM Software, a Nebraska-based company specializing in workforce management solutions, has fallen victim to a data breach affecting approximately 99,525 individuals. This security event was…
PostgreSQL Security Update, Patch For Multiple Vulnerabilities
The PostgreSQL Global Development Group has released a critical security update for all supported versions of PostgreSQL. All the supported versions of PostgreSQL includes 17.1,…
Sonatype Nexus Repository Manager Hit By RCE & XSS Vulnerability
Sonatype has disclosed two significant vulnerabilities in a critical security update released on November 13, 2024, affecting their Nexus Repository Manager 2.x versions. The two…
Samba AD Vulnerability Let Attackers Escalate Privilege
A critical vulnerability in Samba Active Directory (AD) implementations has been discovered that could allow attackers to escalate privileges and potentially take over entire domains.…
BrazenBamboo APT Exploiting FortiClient Zero-Day
A sophisticated cyber espionage campaign conducted by a threat actor known as BrazenBamboo. The group is exploiting an unpatched vulnerability in Fortinet’s FortiClient VPN software…
T-Mobile Hacked – China Launched Cyber Attack on U.S. Telecom Networks
Hackers with ties to Chinese intelligence infiltrated multiple U.S. and international telecom companies, including T-Mobile, in a prolonged cyber-espionage campaign aimed at high-value intelligence targets,…