Category: Securityaffairs

Atlassian Confluence zero-day CVE-2023-22515 actively exploited
17
Jan
2024

Atlassian fixed critical RCE in older Confluence versions

Atlassian fixed critical RCE in older Confluence versions Pierluigi Paganini January 16, 2024 Atlassian warns of a critical remote code…

GOOGLE FIXED THE FOURTH CHROME ZERO-DAY OF 2023
17
Jan
2024

Google fixed the first actively exploited Chrome zero-day of 2024

Google fixed the first actively exploited Chrome zero-day of 2024 Pierluigi Paganini January 16, 2024 Google has addressed the first…

Critical RCE flaw impacts VMware Aria Operations Networks
16
Jan
2024

VMware fixed a critical flaw in Aria Automation. Patch it now!

VMware fixed a critical flaw in Aria Automation. Patch it now! Pierluigi Paganini January 16, 2024 VMware warns customers of…

Experts warn of mass exploitation of Ivanti Connect Secure VPN flaws
16
Jan
2024

Experts warn of mass exploitation of Ivanti Connect Secure VPN flaws

Experts warn of mass exploitation of Ivanti Connect Secure VPN flaws Pierluigi Paganini January 16, 2024 Experts warn that recently…

Experts warn of a vulnerability affecting Bosch BCC100 Thermostat
16
Jan
2024

Experts warn of a vulnerability affecting Bosch BCC100 Thermostat

Experts warn of a vulnerability affecting Bosch BCC100 Thermostat Pierluigi Paganini January 16, 2024 Researchers warn of high-severity vulnerability affecting…

Over 178,000 SonicWall next-generation firewalls (NGFW) online exposed to hack
16
Jan
2024

Over 178,000 SonicWall next-generation firewalls (NGFW) online exposed to hack

Over 178,000 SonicWall next-generation firewalls (NGFW) online exposed to hack Pierluigi Paganini January 15, 2024 Researchers from Bishop Fox found…

Phemedrone campaign exploits Windows smartScreen bypass
15
Jan
2024

Phemedrone campaign exploits Windows smartScreen bypass

Phemedrone info stealer campaign exploits Windows smartScreen bypass Pierluigi Paganini January 15, 2024 Threat actors exploit a recent Windows SmartScreen…

+17K WordPress websites infected with the Balada Injector
15
Jan
2024

Balada Injector continues to infect thousands of WordPress sites

Balada Injector continues to infect thousands of WordPress sites Pierluigi Paganini January 15, 2024 Balada Injector malware infected more than…

Attackers target Apache Hadoop and Flink to deliver cryptominers
15
Jan
2024

Attackers target Apache Hadoop and Flink to deliver cryptominers

Attackers target Apache Hadoop and Flink to deliver cryptominers Pierluigi Paganini January 15, 2024 Researchers devised a new attack that…

Apple discloses 2 actively exploited zero-days in iPhones, Macs
15
Jan
2024

Apple fixed a bug in Magic Keyboard that allows to monitor Bluetooth traffic

Apple fixed a bug in Magic Keyboard that allows to monitor Bluetooth traffic Pierluigi Paganini January 15, 2024 Apple addressed…

Attacks against Denmark 's energy sector were not carried out by Russia-linked APT
14
Jan
2024

Attacks against Denmark ‘s energy sector were not carried out by Russia-linked APT

Attacks against Denmark ‘s energy sector were not carried out by Russia-linked APT Pierluigi Paganini January 14, 2024 Forescout experts…

International police operation dismantled prominent Ukraine-based Ransomware group
14
Jan
2024

Mastermind behind 1.8M cryptojacking scheme arrested in Ukraine

Mastermind behind 1.8 million cryptojacking scheme arrested in Ukraine Pierluigi Paganini January 14, 2024 The National Police of Ukraine, with…