Update: Protecting Against RCE Attacks Abusing WhatsUp Gold Vulnerabilities

Trend Micro researchers uncovered remote code execution attacks targeting Progress Software’s WhatsUp Gold using the vulnerabilities tracked as CVE-2024-6670 and CVE-2024-6671. This article has been indexed from Cyware News – Latest Cyber News Read the original article: Update: Protecting Against…

Perfctl malware strikes again as crypto-crooks target Docker Remote API servers

itsecuritynews.info - 24/Oct 03:04

Attacks on unprotected servers reach ‘critical level’ An unknown attacker is abusing exposed Docker Remote API servers to deploy perfctl...

Microsoft SharePoint RCE bug exploited to breach corporate network

bleepingcomputer.com - 02/Nov 15:19

A recently disclosed Microsoft SharePoint remote code execution (RCE) vulnerability tracked as CVE-2024-38094 is being exploited to gain initial...

CISA Warns of Critical Software Vulnerabilities in Industrial Devices

itsecuritynews.info - 01/Nov 12:04

Multiple vulnerabilities in Rockwell Automation and Mitsubishi products could allow ICS cyber-attacks This article has been indexed from...

Meet the startup that just won the Pentagon’s first AI defense contract

itsecuritynews.info - 05/Nov 17:11

The Pentagon awards its first-ever generative AI defense contract worth $1.8M to Jericho Security, targeting deepfake attacks and AI-powered threats...

Progress fixes Critical vulnerability in Whatsup Gold

thecyberthrone.in - 28/Oct 14:31

Progress Software has disclosed a critical vulnerability in its popular network monitoring solution, WhatsUp Gold, that exposes organizations to...

ServiceNow fixes CVE-2024-8923 and CVE-2024-8924

thecyberthrone.in - 31/Oct 17:07

ServiceNow has addressed two significant vulnerabilities, CVE-2024-8923 and CVE-2024-8924, which could enable unauthorized remote access, potentially...

PTZOptics cameras zero-days actively exploited in the wild

securityaffairs.co - 02/Nov 07:16

Hackers are exploiting two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957, in PTZOptics cameras. Threat actors are attempting...

Researchers Uncover Vulnerabilities in Open-Source AI and ML Models

itsecuritynews.info - 29/Oct 14:09

A little over three dozen security vulnerabilities have been disclosed in various open-source artificial intelligence (AI) and machine learning (ML)...

Millions of Synology NAS devices vulnerable to zero-click attacks (CVE-2024-10443)

itsecuritynews.info - 04/Nov 14:36

Synology has released fixes for an unauthenticated “zero-click” remote code execution flaw (CVE-2024-10443, aka RISK:STATION) affecting its...

Kaspersky IDs security flaws in Unisoc

it-online.co.za - 28/Oct 09:47

Kaspersky Industrial Control Systems Cyber Emergency Response Team (ICS CERT) experts have discovered critical vulnerabilities in Unisoc SoCs that...

Rubriques :