PostgreSQL Security Update, Patch For Multiple Vulnerabilities
The PostgreSQL Global Development Group has released a critical security update for all supported versions of PostgreSQL. All the supported versions of PostgreSQL includes 17.1,…
Category: CyberSecurityNews
Sonatype Nexus Repository Manager Hit By RCE & XSS Vulnerability
Sonatype has disclosed two significant vulnerabilities in a critical security update released on November 13, 2024, affecting their Nexus Repository Manager 2.x versions. The two…
Samba AD Vulnerability Let Attackers Escalate Privilege
A critical vulnerability in Samba Active Directory (AD) implementations has been discovered that could allow attackers to escalate privileges and potentially take over entire domains.…
BrazenBamboo APT Exploiting FortiClient Zero-Day
A sophisticated cyber espionage campaign conducted by a threat actor known as BrazenBamboo. The group is exploiting an unpatched vulnerability in Fortinet’s FortiClient VPN software…
T-Mobile Hacked – China Launched Cyber Attack on U.S. Telecom Networks
Hackers with ties to Chinese intelligence infiltrated multiple U.S. and international telecom companies, including T-Mobile, in a prolonged cyber-espionage campaign aimed at high-value intelligence targets,…
NSO Developed Another WhatsApp Spyware Even After Being Sued
The NSO Group, an Israeli surveillance technology firm, is facing significant legal challenges after a U.S. court filing revealed damning admissions regarding the company’s involvement…
OpenBSD Double-Free Vulnerability Let Attackers Exploit NFS Client & Server
OpenBSD has released an important bug fix addressing a potential double-free vulnerability within its Network File System (NFS) client and server implementation. OpenBSD is a…
DHCP Vulnerability in TP-Link Lets Attackers Takeover Routers Remotely
A critical security vulnerability has been found in TP-Link VN020-F3v(T) routers with firmware version TT_V6.2.1021 Attackers could take over the devices remotely, leading to DoS…
Researchers Detailed WezRat, Know for Executing Attackers Commands
A new information about WezRat has been uncovered recently by security researchers. WezRat is a sophisticated malware family which is associated with the Iranian cyber…
GitHub CLI RCE Vulnerability Let Attackers Execute Malicious Commands
A critical security vulnerability has been discovered in GitHub CLI that could allow attackers to execute malicious commands on a user’s system through remote code…
JPCert Details on Event Tracing Over EventLog for Windows Forensics
The EventLogs have long been the go-to source for incident investigators in the realm of Windows operating system forensics. However, these logs often fall short…
LodaRAT Malware Attacking Windows Users To Steal Login Details
A new variant of the LodaRAT malware is actively targeting Windows users worldwide in an ongoing campaign to steal sensitive information, including login credentials and…