CISA adds Apache Flink flaw to its Known Exploited Vulnerabilities catalog
CISA adds Apache Flink flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini May 24, 2024 CISA adds Apache Flink improper access control vulnerability to…
Category: Securityaffairs
Usage of TLS in DDNS Services leads to Information Disclosure in Multiple Vendors
Usage of TLS in DDNS Services leads to Information Disclosure in Multiple Vendors Pierluigi Paganini May 24, 2024 The use of Dynamic DNS (DDNS) services…
Recall feature in Microsoft Copilot+ PCs raises privacy concerns
Recall feature in Microsoft Copilot+ PCs raises privacy and security concerns Pierluigi Paganini May 24, 2024 UK data watchdog is investigating Microsoft regarding the new…
The threat of KeyPlug against Italian industries
APT41: The threat of KeyPlug against Italian industries Pierluigi Paganini May 23, 2024 Tinexta Cyber’s Zlab Malware Team uncovered a backdoor known as KeyPlug employed…
The threat of KeyPlug against Italian industries
APT41: The threat of KeyPlug against Italian industries Pierluigi Paganini May 23, 2024 Tinexta Cyber’s Zlab Malware Team uncovered a backdoor known as KeyPlug employed…
Critical SQL Injection flaws impact Ivanti Endpoint Manager (EPM)
Critical SQL Injection flaws impact Ivanti Endpoint Manager (EPM) Pierluigi Paganini May 23, 2024 Ivanti addressed multiple flaws in the Endpoint Manager (EPM), including remote…
Chinese actor ‘Unfading Sea Haze’ remained undetected for five years
Chinese actor ‘Unfading Sea Haze’ remained undetected for five years Pierluigi Paganini May 23, 2024 A previously unknown China-linked threat actor dubbed ‘Unfading Sea Haze’…
A consumer-grade spyware app found in check-in systems of 3 US hotels
A consumer-grade spyware app found in check-in systems of 3 US hotels Pierluigi Paganini May 23, 2024 A researcher discovered a consumer-grade spyware app on…
Critical Veeam Backup Enterprise Manager auth bypass bug
Critical Veeam Backup Enterprise Manager authentication bypass bug Pierluigi Paganini May 22, 2024 A critical security vulnerability in Veeam Backup Enterprise Manager could allow threat…
Cybercriminals are targeting elections in India with influence campaigns
Cybercriminals are targeting elections in India with influence campaigns Pierluigi Paganini May 22, 2024 Resecurity warns of a surge in malicious cyber activity targeting the…
A malware campaign exploits Microsoft Exchange Server flaws
An ongoing malware campaign exploits Microsoft Exchange Server flaws Pierluigi Paganini May 22, 2024 A threat actor is targeting organizations in Africa and the Middle…
Critical GitHub Enterprise Server Auth Bypass bug. Fix it now!
Critical GitHub Enterprise Server Authentication Bypass bug. Fix it now! Pierluigi Paganini May 22, 2024 GitHub addressed a vulnerability in the GitHub Enterprise Server (GHES)…