Millions of WordPress ecommerce websites affected by these two vulnerabilities
Over one million different attempts have been made to get into a popular WordPress plugin over the last several days, according to experts that study…
Category: ExploitOne
How new CVSS 4.0 framework is a game changer for cyber security industry
The Common Vulnerability Scoring System (CVSS) framework, which is used by cybersecurity experts and manufacturers to convey data about software vulnerabilities, is undergoing significant revisions.…
Taking control of network by hacking Citrix Secure Access Client vulnerabilities
Citrix is a cloud computing firm with its headquarters in Florida. Citrix focuses in the areas of computer software, virtualization, and cloud computing. As of…
How cybercriminals forge digital signatures on kernel-mode malicious drivers to bypass EDR
Chinese-speaking threat actors have been shown to be using a Microsoft Windows policy vulnerability to spoof signatures on kernel-mode drivers. The Windows operating system (OS)…
Biggest law firm hacked by MOVEit flaw, 16 millions victim’s data leaked
According to Nypost, the personal information of millionsof customers of three of the largest legal firms in the nation may have been exposed as a…
This exploit code allows hacking into Barracuda Email Security Gateway (ESG) appliance
Rapid7 published detailed anaysis and exploit of flaw in Barracuda Email Security Gateway (ESG) appliance. It has been discovered that versions 5.1.3.001–9.2.0.006 of the Barracuda…
New tool TeamsPhisher allows to hack victims teams account and infect victim with malware
It is getting more difficult to introduce malware into organizations that are being targeted. Many of the conventional payload types, such as .exe files and…
Android phone spying application hacked by robinhood hacker
LetMeSpy is a form of phone monitoring app that may be used for parental control or employee surveillance, depending on how the program is promoted.…
Industrial Control Systems (ICS) manufacturers Schneider Electric and Siemens Energy hacked
The Clop ransomware organization has uploaded five more victims of MOVEit attacks to its dark web leak site. Among these victims are industrial behemoths such…
He is the “El Chapo” of darkweb and king of online drug trade
Milomir Desnica has been charged by the United States Department of Justice of operating the website known as Monopoly Market and enabling the unlawful sale…
Hack networks via Fortinet FortiNAC by sending specially crafted requests to the tcp/1050 service
This problem arises as the importance of cybersecurity around the globe continues to grow. The security architecture of our network is under continual attack, and…
SAP employees are stealing hard drives from data center and selling on eBay
An SSD drive that was reported stolen from a SAP datacenter in Walldorf has been discovered on eBay, which has prompted the German software manufacturer…