Tag: cve
-
BlackByte Ransomware Group Exploits VMware CVE-2024-37085 Flaw, Shifts Tactics
The BlackByte ransomware group has re-emerged with an unsettling surge in activity and a refined set of tactics, techniques, and procedures (TTPs) tha… First seen on securityonline.info Jump to article: securityonline.info/blackbyte-ransomware-group-exploits-vmware-cve-2024-37085-flaw-shifts-tactics/
-
Huntress is now a CVE Numbering Authority. But What Does That Mean?
Tags: cveFirst seen on scmagazine.com Jump to article: www.scmagazine.com/native/huntress-is-now-a-cve-numbering-authority-but-what-does-that-mean
-
BlackByte Ransomware group targets recently patched VMware ESXi flaw CVE-2024-37085
BlackByte ransomware operators are exploiting a recently patched VMware ESXi hypervisors vulnerability in recent attacks. Cisco Talos observed the Bla… First seen on securityaffairs.com Jump to article: securityaffairs.com/167695/malware/blackbyte-ransomware-vmware-esxi-flaw.html
-
Critical Apache OFBiz Vulnerability CVE-2024-38856 Identified and Actively Exploited
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has flagged a security vulnerability affecting Apache OFBiz, the open-source enterpri… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cisa-flags-cve-2024-38856-vulnerability/
-
Recent Critical Vulnerabilities: August 2024 CVE Roundup
Protecting Organizations with Up-to-Date CVE Awareness Reports from the National Institute of Standards and Technology (NIST) through its National Vu… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/recent-critical-vulnerabilities-august-2024-cve-roundup/
-
China’s Volt Typhoon Exploits 0-day in Versa’s SD-WAN Director Servers
So far, the threat actor has compromised at least five organizations using CVE-2024-39717; CISA has added bug to its Known Exploited Vulnerability dat… First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/china-s-volt-typhoon-actively-exploiting-now-patched-0-day-in-versa-director-servers
-
0-day-Schwachstelle CVE-2024-38193 wurde durch Lazarus angegriffen
Zum 13. August 2024 hat Microsoft die 0-day-Schwachstelle CVE-2024-38193 im Treiber afd.sys mit einem Sicherheitsupdate geschlossen. Dort hieß es vage… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/08/20/windows-0-day-schwachstelle-cve-2024-38193-wurde-durch-lazarus-angegriffen/
-
Critical Chrome Zero-Day Vulnerability (CVE-2024-7965) Requires Immediate User Action
Google recently addressed a critical zero-day vulnerability in its Chrome browser, identified as CVE-2024-7965. This high-severity flaw, affecting ver… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/google-fixes-chrome-zero-day-vulnerability/
-
Progress Kemp LoadMaster (Load-Balancer) wegen CVE-2024-7591 aktualisieren
Tags: cveKurzer Hinweis für Administratoren, die den Load-Balancer LoadMaster von Progress Kemp verwenden. Der Anbieter hat im August 2024 eine Warnung vor ein… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/08/20/progress-kemp-loadmaster-load-balancer-aktualisieren/
-
New Chrome zero-day actively exploited, patch quickly! (CVE-2024-7971)
A new Chrome zero-day vulnerability (CVE-2024-7971) exploited by attackers in the wild has been fixed by Google. About CVE-2024-7971 CVE-2024-7971 is … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/08/22/cve-2024-7971/
-
Unseen Msupedge Malware Exploits PHP Flaw CVE-2024-4577 in Taiwanese University Cyberattack
A new and sophisticated backdoor, dubbed Backdoor.Msupedge, has been identified in a recent cyberattack targeting a university in Taiwan. Symantec’s s… First seen on securityonline.info Jump to article: securityonline.info/unseen-msupedge-malware-exploits-php-flaw-cve-2024-4577-in-taiwanese-university-cyberattack/
-
CVE-2024-38178 Vulnerability within Microsoft Edge
High threat level vulnerability CVE-2024-38178 discovered on Microsoft Edge browser : OFFICIAL CVE-2024-38178 PATCHING INFORMATION : A recent discover… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/cve-2024-38178-vulnerability-within-microsoft-edge/
-
Lazarus Group Exploits Microsoft Zero-Days CVE-2024-38193, Patch Urgently
Last week, Microsoft addressed multiple high-severity security vulnerabilities in its security updates, some of which have already been exploited by h… First seen on securityonline.info Jump to article: securityonline.info/lazarus-group-exploits-microsoft-zero-days-cve-2024-38193-patch-urgently/
-
How we improved vulnerability prioritization with machine learning
It’s easy to find vulnerabilities. It’s harder to prioritize and fix them. So far in 2024, there has been an average of over 110 CVEs disclosed per d… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/how-we-improved-vulnerability-prioritization-with-machine-learning/
-
SolarWinds Web Help Desk CVE scores a 9.8
SolarWinds urged customers to patch the vulnerability that could allow an attacker to run commands on a host machine, while;CISA added the CVE to its … First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/solarwinds-web-help-desk-patch/724482/
-
Nachbetrachtung: Windows und die TCPSchwachstelle CVE-2024-38063
Noch eine kleine Nachlese vom August 2023 Patchday (Blog-Leser haben angeregt, das mal in einem separaten Beitrag aufzubereiten). Zum 13. August 2024 … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/08/16/nachbetrachtung-windows-und-die-tcp-ip-schwachstelle-cve-2024-38063/
-
0-day in Windows driver exploited by North Korean hackers to deliver rootkit (CVE-2024-38193)
CVE-2024-38193, an actively exploited zero-day that Microsoft patched earlier this month, has been leveraged by North Korean hackers to install a root… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/08/20/0-day-in-windows-driver-exploited-by-north-korean-hackers-to-deliver-rootkit-cve-2024-38193/
-
Experts warn of exploit attempt for Ivanti vTM bug
Researchers at the Shadowserver Foundation observed an exploit attempt based on the public PoC for Ivanti vTM bug CVE-2024-7593. Researchers at the Sh… First seen on securityaffairs.com Jump to article: securityaffairs.com/167250/hacking/exploit-attempt-ivanti-vtm-bug.html
-
Microsoft Zero-Day CVE-2024-38193 was exploited by North Korea-linked Lazarus APT
Microsoft addressed a zero-day vulnerability actively exploited by the North-Korea-linked Lazarus APT group. Microsoft has addressed a zero-day vulner… First seen on securityaffairs.com Jump to article: securityaffairs.com/167246/apt/microsoft-zero-day-cve-2024-38193-lazarus.html
-
Windows Zero-Day Attack Linked to North Korea’s Lazarus APT
The vulnerability, tracked as CVE-2024-38193 and marked as ‘actively exploited’ by Microsoft, allows SYSTEM privileges on the latest Windows operating… First seen on securityweek.com Jump to article: www.securityweek.com/windows-zero-day-attack-linked-to-north-koreas-lazarus-apt/
-
Unauthenticated RCE in WordPress Plugin Exposes 100,000 WordPress Sites
A critical vulnerability has been discovered in the GiveWP plugin, a popular WordPress donation and fundraising platform. This vulnerability, CVE-2024… First seen on gbhackers.com Jump to article: gbhackers.com/unauthenticated-rce-in-wordpress-plugin/
-
Linux Kernal Vulnerability Let Attackers Bypass CPU Gain Read/Write Access
Researchers have uncovered a critical vulnerability within the Linux kernel’sdmam_free_coherent()function. This flaw, identified as CVE-2024-43856, st… First seen on gbhackers.com Jump to article: gbhackers.com/linux-kernal-vulnerability/
-
In Other News: 400 CNAs, Crash Reports, Schlatter Cyberattack
Noteworthy stories that might have slipped under the radar: there are 400 CVE Numbering Authorities, crash reports can be a valuable source of informa… First seen on securityweek.com Jump to article: www.securityweek.com/in-other-news-400-cnas-crash-reports-schlatter-cyberattack/
-
CVE-2024-7646: Ingress-NGINX Annotation Validation Bypass A Deep Dive
Tags: cveFirst seen on securityboulevard.com Jump to article: securityboulevard.com/2024/08/cve-2024-7646-ingress-nginx-annotation-validation-bypass-a-deep-dive/
-
Microsoft Windows CVE triggers blue screen of death, researchers find
First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/vulnerability-microsoft-windows-blue-screen/724085/
-
Copy2Pwn Zero-Day Exploited to Bypass Windows Protections
ZDI details a zero-day named Copy2Pwn and tracked as CVE-2024-38213, which cybercriminals exploited to bypass MotW protections in Windows. The post Co… First seen on securityweek.com Jump to article: www.securityweek.com/copy2pwn-zero-day-exploited-to-bypass-windows-protections/
-
CVE-2024-21412 Used in DarkGate Malware Campaigns
A DarkGate malware campaign observed in mid-January 2024 has highlighted the exploitation of a recently patched security flaw in Microsoft Windows as … First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2024-21412-darkgate-malware/
-
GhostScript-Schwachstelle CVE-2024-29510 wird angegriffen
Noch ein Nachtrag in Sachen Sicherheit. Anfang Juli 2024 gab es in der openwall-Mailing-Liste Hinweise zu Schwachstellen im GhostScript-Interpreter (v… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/08/12/ghostscript-schwachstelle-cve-2024-29510-wird-angegriffen/