PoC Exploit Released For Windows Kernel-Mode Drivers Privilege Escalation Flaw
15
Oct
2024

PoC Exploit Released For Windows Kernel-Mode Drivers Privilege Escalation Flaw

A critical vulnerability in Windows Kernel-Mode Drivers has been exposed with the release of a Proof-of-Concept (PoC) exploit, allowing attackers…

Millions of People Are Using Abusive AI ‘Nudify’ Bots on Telegram
15
Oct
2024

Millions of People Are Using Abusive AI ‘Nudify’ Bots on Telegram

Kate Ruane, director of the Center for Democracy and Technology’s free expression project, says most major technology platforms now have…

Fortigate SSLVPN Vulnerability exploited-in-the-wild
15
Oct
2024

Fortigate SSLVPN Vulnerability exploited-in-the-wild

A critical vulnerability in Fortinet’s FortiGate SSLVPN appliances, CVE-2024-23113, has been actively exploited in the wild. This format string flaw…

GitLab Critical Patches Released: 17.4.2, 17.3.5, 17.2.9
15
Oct
2024

GitLab Critical Patches Released: 17.4.2, 17.3.5, 17.2.9

GitLab has announced the release of critical patches for its Community Edition (CE) and Enterprise Edition (EE) with versions 17.4.2,…

WordPress Jetpack plugin critical flaw impacts 27 million sites
15
Oct
2024

WordPress Jetpack plugin critical flaw impacts 27 million sites

WordPress Jetpack plugin critical flaw impacts 27 million sites Pierluigi Paganini October 15, 2024 WordPress Jetpack plugin issued an update…

Threat Actors Claim to Sell Data Allegedly Stolen from Cisco
15
Oct
2024

Threat Actors Claim to Sell Data Allegedly Stolen from Cisco

A group of threat actors, led by the notorious hacker known as IntelBroker, has claimed responsibility for a significant data…

Ubuntu Authd Flaw Let Attackers Spoof User ID
15
Oct
2024

Ubuntu Authd Flaw Let Attackers Spoof User ID

A recently identified vulnerability in Ubuntu’s Authd, CVE-2024-9312, has raised significant security concerns. The flaw, present through version 0.3.6, allows…

Hacking Campaigns
15
Oct
2024

China Accuses U.S. of Fabricating Volt Typhoon to Hide Its Own Hacking Campaigns

China’s National Computer Virus Emergency Response Center (CVERC) has doubled down on claims that the threat actor known as the…

Google launches Parallelstore file storage at cloud AI training
15
Oct
2024

Google launches Parallelstore file storage at cloud AI training

Google Cloud Platform (GCP) has gone live with its Parallelstore managed parallel file storage service, which is aimed at intensive…

Hackers Exploiting Ivanti CSA Zero-days To Compromise Victims’ Networks
15
Oct
2024

Hackers Exploiting Ivanti CSA Zero-days To Compromise Victims’ Networks

Researchers have uncovered a sophisticated attack campaign targeting Ivanti Cloud Services Appliance (CSA) users. Nation-state actors are exploiting multiple zero-day…

Thwarting Supply Chain Cyber Attacks
15
Oct
2024

Thwarting Supply Chain Cyber Attacks

In recent years, third-party breaches have gained significant attention, with high-profile incidents such as the Okta and MOVEit hacks highlighting…

Loader Malware
15
Oct
2024

Researchers Uncover Hijack Loader Malware Using Stolen Code-Signing Certificates

Oct 15, 2024Ravie LakshmananThreat Detection / Malware Cybersecurity researchers have disclosed a new malware campaign that delivers Hijack Loader artifacts…