Browsing Tag
RCE
35 posts
Weekly Top 10 – 03.25.2024- AI Enhanced Cyber Attacks Rising, Microsoft Warns Taxpayers of Tax Return Phishing Scams, “Fluffy Wolf” Stealer Malware Targets Corporate Environments, and More.
WEEKLY TOP TEN: March 25, 2024, 15:00 GMT Our Threat Operations and Intelligence team compiles a daily digest…
Patch Now To Fix Critical RCE Vulnerability In ConnectWise ScreenConnect
ConnectWise has issued a patch for its ScreenConnect product to fix two vulnerabilities that provide a low-effort authentication bypass and path traversal, potentially allowing remote code execution or access to private systems and data. Admins are encouraged to apply the patch ASAP.
Weekly Top 10 – 01.29.2024- QR Code Phishing Attacks, LockBit Ransomware Affiliates, Zero-Day in Apple Devices Patched, and more.
WEEKLY TOP TEN | January 29, 2024, 15:00 GMT Our Threat Operations and Intelligence team compiles a daily…
Weekly Top 10 – 10.23.2023- Critical Vulnerability in Cisco IOS XE Leads to Over 30k Compromised Devices, Threat Actors Abuse Google Ads to Deliver Malware, QR Codes Used to Spread Malware and Steal Passwords, Coordinated Law Enforcement Effort Takes Down RagnarLocker Ransomware Gang
Critical Vulnerabilities discovered in WS_FTP Server software, Zero-day exploit in Exim Maill Server, Maximum Severity Vulnerabilities in Confulence, Looney-Toonable flaw in Linux Distributions GNU C Library, and 6 more cybersecurity stories...
Current Dependency Vulnerabilities Giving Us PTSD
Lately, it seems we’re all plagued by zero-day and dependency-related vulnerabilities. Log4Shell had everyone scrambling in 2021, and…
Weekly Top 10 – 10.16.2023- Critical Vulnerability in Cisco Emergency Responder Software, Desktop Linux Vulnerable to Remote Code Execution via LibCue, Vulnerability in Citrix NetScaler Login Pages Allows for Credential Theft, cURL Patches Two High-Severity Vulnerabilities
Critical Vulnerabilities discovered in WS_FTP Server software, Zero-day exploit in Exim Maill Server, Maximum Severity Vulnerabilities in Confulence, Looney-Toonable flaw in Linux Distributions GNU C Library, and 6 more cybersecurity stories...
Weekly Top 10 – 10.9.2023- Zombie Zoom Links, Indeed.com Redirect Vulnerability Abused, CISA Adds Windows and JetBrains to KEV Catalogue, BING AI Convinced to Reveal CAPTCHA
Critical Vulnerabilities discovered in WS_FTP Server software, Zero-day exploit in Exim Maill Server, Maximum Severity Vulnerabilities in Confulence, Looney-Toonable flaw in Linux Distributions GNU C Library, and 6 more cybersecurity stories...
Mitigating The Unpatched Office and Windows HTML RCE (CVE-2023-36884)
July 2023's Patch Tuesday released fixes for several vulnerabilities being actively exploited in the wild, but only identified mitigation for one particular unpatched zero-day that can allow HTML remote code execution as part of an initial attack.
Weekly Top Ten Cybersecurity Stories – 5.30.2023
Chinese hackers infiltrate U.S. and Guam infrastructure, Barracuda warns of exploited Zero-Day, GitLab emergency patch, and 7 more stories...
Weekly Top Ten Cybersecurity Stories – 1.27.2023
Threat actors pivot to Microsoft OneNote attachments, Federal agency breaches, Windows CryptoAPI vulnerability, and 7 more.