Mass Phishing Campaign Attacking Zimbra email users
A group of researchers recently published a significant mass-spreading phishing campaign. It targets Zimbra account users, shedding light on a campaign that has been active…
Category: CyberSecurityNews
WinRAR Flaw Let Attackers Execute Remote Code: Update Now!
An arbitrary code execution vulnerability was discovered in WinRAR, which can be exploited by opening a specially crafted RAR file. The CVE for this vulnerability…
Top Privileged Users Monitoring Best Practices
Privileged users typically hold crucial positions within organizations. They usually have elevated access, authority, and permission levels in the organization’s IT systems, networks, applications, and…
Choosing the Right Mobile Testing Tools: A Comprehensive Guide
Mobile application testing is the very process of analyzing the operation, efficiency, and accessibility of mobile apps to make sure that they satisfy quality standards.…
Threat and Vulnerability Roundup for the week of August 13th to 19th
Welcome to Cyber Writes’ weekly Threat and Vulnerability Roundup, where we provide the most recent information on cybersecurity news. Take advantage of our extensive coverage…
Hacking Crew Breached the US Air Force Satellite In Orbit
This year’s Hack-A-Sat competition challenged teams to hack into an actual satellite in orbit. The US Air Force Moonlighter, which was launched especially for the…
Critical Citrix ShareFile Flaw Exploited in the Wild: CISA Warns
Citrix ShareFile is a cloud-based platform used by organizations to store and share large files. It also allows users to create branded, password-protected files through…
Threat Actors Mimic Popular IT Tools to Deliver Malware Stealthily
Threat actors are known to use several methods to lure victims into their websites and make them download their malicious payload, which will allow them…
Cisco Duo Device Health App Flaw Allows Directory Traversal Attacks
The CryptoService function in the Cisco Duo Device Health Application for Windows has a vulnerability tracked as (CVE-2023-20229). This might allow a low-privileged attacker to…
Ivanti Avalanche Flaw Let Attackers Execute Remote Code
Ivanti Avalanche has been reported with several vulnerabilities ranging between Medium to High severity. Vulnerabilities include Arbitrary file upload remote code execution, Authentication bypass, Buffer…
IBM Security Guardium Flaw – Execute Arbitrary Commands
A Command Injection vulnerability was recently discovered on IBM Security Guardium which allows threat actors to execute arbitrary commands on the affected system remotely. This…
Discord.io Breach Caused By A Vulnerability In Website’s Code
Discord.io experienced a significant data breach on the 14th of August 2023 that risks the privacy of about 760K consumers’ data. The platform revealed the massive data…