Threat and Vulnerability Roundup for the week of August 13th to 19th
Welcome to Cyber Writes’ weekly Threat and Vulnerability Roundup, where we provide the most recent information on cybersecurity news. Take advantage of our extensive coverage…
Category: CyberSecurityNews
Hacking Crew Breached the US Air Force Satellite In Orbit
This year’s Hack-A-Sat competition challenged teams to hack into an actual satellite in orbit. The US Air Force Moonlighter, which was launched especially for the…
Critical Citrix ShareFile Flaw Exploited in the Wild: CISA Warns
Citrix ShareFile is a cloud-based platform used by organizations to store and share large files. It also allows users to create branded, password-protected files through…
Threat Actors Mimic Popular IT Tools to Deliver Malware Stealthily
Threat actors are known to use several methods to lure victims into their websites and make them download their malicious payload, which will allow them…
Cisco Duo Device Health App Flaw Allows Directory Traversal Attacks
The CryptoService function in the Cisco Duo Device Health Application for Windows has a vulnerability tracked as (CVE-2023-20229). This might allow a low-privileged attacker to…
Ivanti Avalanche Flaw Let Attackers Execute Remote Code
Ivanti Avalanche has been reported with several vulnerabilities ranging between Medium to High severity. Vulnerabilities include Arbitrary file upload remote code execution, Authentication bypass, Buffer…
IBM Security Guardium Flaw – Execute Arbitrary Commands
A Command Injection vulnerability was recently discovered on IBM Security Guardium which allows threat actors to execute arbitrary commands on the affected system remotely. This…
Discord.io Breach Caused By A Vulnerability In Website’s Code
Discord.io experienced a significant data breach on the 14th of August 2023 that risks the privacy of about 760K consumers’ data. The platform revealed the massive data…
New Phishing Attack Exploits Cloudflare R2 Hosting Service
The Cloudflare R2 hosting service like the following platforms, which provides a cost-effective large-scale data storage platform to developers with no exit bandwidth charges:- Amazon…
New Citrix ADC Zero-Day Scanner Tool Released With IOCs
Citrix was previously discovered with a Zero-Day vulnerability on their Citrix NetScaler Application Delivery Controller (ADC) that allowed threat actors to perform remote code execution.…
2000+ Citrix NetScalers Hacked to Deploy Web shell
It has been discovered that an attacker installed web shells on susceptible Citrix NetScalers, exploiting the CVE-2023-3519 flaw to acquire persistent access. This critical zero-day…
Cyber Criminals Turned Mac Systems into Proxy Exit Nodes
Besides Windows OS, now threat actors are also actively targeting Mac systems to accomplish their illicit goals. Cybersecurity analysts at AT&T Alien Labs recently observed…