The Cybersecurity and Infrastructure Security Agency (CISA) has added one Zimbra and three Microsoft vulnerabilities to its Known Exploited Vulnerabilities Catalog based on evidence that cyber criminals are actively exploiting the vulnerabilities.
Sandworm threat actors, also known as Voodoo Bear, are now using a new malware dubbed Cyclops Blink, a replacement for VPNFilter malware previously exposed in 2018, to target small office/home office (SOHO) routers and network attached storage (NAS) devices.
Sandworm threat actors using new malware Cyclops Blink to target SOHO devices Read More »
The Cybersecurity and Infrastructure Security Agency (CISA) has added two Zabbix vulnerabilities (CVE-2022-23131, CVE-2022-23134) to its Known Exploited Vulnerabilities Catalog based on evidence that cyber criminals are actively exploiting the vulnerabilities.
CISA adds 2 Zabbix vulnerabilities to Known Exploited Vulnerabilities Catalog Read More »
A security researcher has discovered a severe vulnerability in WordPress plugin backup utility UpdraftPlus that could allow an attacker to potentially steal sensitive information from backups.
Severe vulnerability found in WordPress plugin backup utility UpdraftPlus Read More »
Researchers from Proofpoint have spotted an advanced persistent threat actor (APT) dubbed TA2541 that has been targeting entities in the aviation industry to distribute AsyncRAT malware.
Threat actor TA2541 targets aviation industry to distribute AsyncRAT Read More »
Drupal has patched two Moderately Critical improper input validation and information disclosure vulnerabilities that affect multiple versions of Drupal Core.
Drupal fixes 2 Moderately Critical vulnerabilities(CVE-2022-25271 and CVE-2022-25270) Read More »
The Federal Bureau of Investigation (FBI) and the U.S. Secret Service (USSS) issued a joint Cybersecurity Advisory warning of BlackByte ransomware compromising multiple entities in US critical infrastructure sectors.
VMware has released Critical ESXi, Workstation, and Fusion security updates that address multiple vulnerabilities.
VMware releases Critical ESXi, Workstation, and Fusion security updates Read More »
The Cybersecurity and Infrastructure Security Agency (CISA) has added 9 vulnerabilities to its Known Exploited Vulnerabilities Catalog. The issues include recently patched Adobe and Chrome zero-days.
Google has released Chrome 98.0.4758.102 for Windows, Mac and Linux with fixes for multiple vulnerabilities, to include one zero-day (CVE-2022-0609) exploited in the wild.
