Category: Securityaffairs

Zimbra urges customers to manually fix actively exploited zero-daySecurity Affairs
13
Jul
2023

Zimbra urges customers to manually fix actively exploited zero-daySecurity Affairs

Zimbra has released updates to address a zero-day vulnerability actively exploited in attacks aimed at Zimbra Collaboration Suite (ZCS) email…

APT VANGUARD PANDA uses a new tradecraft in recent attacksSecurity Affairs
13
Jul
2023

Chinese hackers compromised emails of US Government agenciesSecurity Affairs

Chinese hackers have compromised the emails of an unnamed US Federal Civilian Executive Branch (FCEB) agency. In Mid-June a malicious…

SonicWall urges orgs to fix critical flaws in GMS/Analytics productsSecurity Affairs
13
Jul
2023

SonicWall urges orgs to fix critical flaws in GMS/Analytics productsSecurity Affairs

SonicWall fixed multiple critical vulnerabilities impacting its GMS firewall management and Analytics management and reporting engine. SonicWall addressed multiple critical…

Citrix fixed a critical flaw in Secure Access Client for UbuntuSecurity Affairs
12
Jul
2023

Citrix fixed a critical flaw in Secure Access Client for UbuntuSecurity Affairs

Citrix fixed a critical flaw affecting the Secure Access client for Ubuntu that could be exploited to achieve remote code…

UK regulator Ofcom hacked with a MOVEit zero-daySecurity Affairs
12
Jul
2023

Cl0p hacker operating from Russia-Ukraine war front lineSecurity Affairs

CyberNews researchers discovered that at least one of the Cl0p ransomware gang masterminds is still residing in Ukraine. Original post…

Fortinet urges to patch the critical RCE flaw CVE-2023-27997 in Fortigate firewallsSecurity Affairs
12
Jul
2023

Fortinet fixed a critical flaw in FortiOS and FortiProxy

Fortinet warns of a critical vulnerability impacting FortiOS and FortiProxy that can allow remote attackers to perform arbitrary code execution….

APT VANGUARD PANDA uses a new tradecraft in recent attacksSecurity Affairs
12
Jul
2023

Microsoft mitigated an attack by Chinese threat actor Storm-0558Security Affairs

Microsoft announced it has mitigated a cyber attack by a China-linked threat actor, tracked as Storm-0558, which targeted customer emails….

Unpatched Office zero-day CVE-2023-36884 actively exploited in targeted attacksSecurity Affairs
12
Jul
2023

Unpatched Office zero-day CVE-2023-36884 actively exploited in targeted attacksSecurity Affairs

Microsoft warned today that an unpatched zero-day in multiple Windows and Office products was actively exploited in the wild. Microsoft…

St. Margaret’s Health is the first hospital to cite a cyberattack as a reason for its closureSecurity Affairs
11
Jul
2023

HCA Healthcare data breach impacted 11 million patientsSecurity Affairs

HCA Healthcare disclosed a data breach that exposed the personal information of roughly 11 million patients. HCA Healthcare this week…

Apple fixed actively exploited zero-day flaws in iOS,macOS,& SafariSecurity Affairs
11
Jul
2023

Apple issued Rapid Security Response updates to fix a zero-day but pulled them due to a Safari bugSecurity Affairs

Apple released Rapid Security Response updates for iOS, iPadOS, macOS, and Safari web browser to address an actively exploited zero-day. Apple has released Rapid Security…

VMware fixed five memory corruption issues in vCenter ServerSecurity Affairs
11
Jul
2023

VMware warns customers of exploit available for critical vRealize RCE flaw CVE-2023-20864Security Affairs

VMware warns customers of the public availability of an exploit code for the RCE vulnerability CVE-2023-20864 affecting vRealize. VMware warned…

Crooks Evolve Antidetect Tooling for Mobile OS-Based FraudSecurity Affairs
11
Jul
2023

Crooks Evolve Antidetect Tooling for Mobile OS-Based FraudSecurity Affairs

Resecurity identified the emergence of adversarial mobile Android-based Antidetect Tooling for Mobile OS-Based Fraud. Resecurity has identified the emergence of…