Nessus Vulnerability Let Attackers Alter Rules Variables
An arbitrary file write vulnerability has been discovered in Nessus, which allows an authenticated, remote attacker to perform a denial of service condition on affected…
Category: CyberSecurityNews
Hackers Infect Linux Machines via Apache ActiveMQ Vulnerability
Apache ActiveMQ is a Java-based open-source protocol that allows distributed applications to exchange messages. It uses the JMS API to provide a dependable messaging platform…
LitterDrifter Powershell Worm Rapidly Spreads on USB Drives
Gamaredon (aka Primitive Bear, ACTINIUM, and Shuckworm) stands out in Russian espionage by exclusively targeting Ukrainian entities. Unusually evident, it challenges researchers seeking evidence of…
Splunk RCE Vulnerability Let Attackers Upload Malicious File
A high-severity Remote Code Execution (RCE) flaw in Splunk Enterprise has been discovered, enabling an attacker to upload malicious files. Versions of Splunk Enterprise less than…
Hackers Exploit Google Workspace to Exfiltrate Data
Recent research into Google Workspace and Google Cloud Platform by Bitdefender Labs reveals novel attack methods, potentially leading to network-wide breaches and raising concerns about…
Hackers Exploiting Zimbra 0-day to Attack
Zimbra Collaboration is an open-source solution software suite with an email server and web client for collaboration. Over 5,000 companies and public sector users, along…
FBI Shares Techniques Used by Scattered Spider Hacker Group
In recent months, the Scattered Spider hacking group (aka Starfraud, UNC3944, Scatter Swine, and Muddled Libra) has made news for allegedly attacking the following casino…
Malware Discovered in Kids’ Tablet steals sensitive data
In the ever-expanding market of Android devices, the allure of budget-friendly options can sometimes conceal unforeseen risks. Purchasing Android devices from online platforms like Amazon…
FortiSIEM Injection Flaw – Attackers Execute Malicious Commands
OS command injection is a security vulnerability where an attacker exploits improper user input validation to inject malicious commands into an operating system. This can…
ChatGPT for Malware Analysis: Enhancing GPT’s Ability
GPT excels in verbal thinking, skillfully choosing precise words for optimal responses. Understanding this key property is crucial, as much of its subsequent behavior stems…
Google Chrome Use after free Vulnerability leads to Browser Crash
Google Chrome Stable Channel Update for Desktop version 119.0.6.45.159 for Mac and Linux and 119.0.6045.159/.160 for Windows has been released, which will be rolling out…
Kubernetes Windows Nodes Flaw Let Attacks Gain Admin Privilege
As previously reported, three high-severity vulnerabilities in Kubernetes existed in Ingress controllers for NGINX. In addition to this, another high-severity vulnerability for Kubernetes Windows has…