X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - ITSECURITYNEWS.INFO - A La Une - 09/Jan 01:11

Chinese-speaking hackers exploited ESXi zero-days long before disclosure

Chinese-speaking attackers used a hacked SonicWall VPN to deploy ESXi zero-days that were likely exploited over a year before public disclosure. Chinese-speaking attackers were seen abusing a hacked SonicWall VPN to deliver a toolkit targeting VMware ESXi. The exploit chain…

Articles similaires

Sorry! Image not available at this time

China-Linked Hackers Exploit VMware ESXi Zero-Days to Escape Virtual Machines

itsecuritynews.info - 09/Jan 19:31

Chinese-speaking threat actors are suspected to have leveraged a compromised SonicWall VPN appliance as an initial access vector to deploy a VMware...

Sorry! Image not available at this time

Hackers Exploit Visual Studio Code to Deploy Malicious Payloads on Victim Systems

itsecuritynews.info - 21/Jan 06:38

The attack arsenal by extensively abusing Microsoft Visual Studio Code configuration files to deliver and execute malicious payloads on compromised...

Sorry! Image not available at this time

Hackers Exploit Visual Studio Code to Deploy Malicious Payloads on Victim Systems

itsecuritynews.info - 21/Jan 06:38

The attack arsenal by extensively abusing Microsoft Visual Studio Code configuration files to deliver and execute malicious payloads on compromised...

Sorry! Image not available at this time

MAESTRO Toolkit Exploiting VMware VM Escape Vulnerabilities

itsecuritynews.info - 09/Jan 20:07

Cybersecurity researchers from Huntress detail a major VM Escape attack where hackers took over host servers. Using a secret toolkit called MAESTRO,...

Sorry! Image not available at this time

MAESTRO Toolkit Exploiting VMware VM Escape Vulnerabilities

itsecuritynews.info - 09/Jan 20:07

Cybersecurity researchers from Huntress detail a major VM Escape attack where hackers took over host servers. Using a secret toolkit called MAESTRO,...

Sorry! Image not available at this time

Cisco fixes AsyncOS vulnerability exploited in zero-day attacks (CVE-2025-20393)

itsecuritynews.info - 16/Jan 15:04

Cisco has finally shipped security updates for its Email Security Gateway and Secure Email and Web Manager devices, which fix CVE-2025-20393, a...

Sorry! Image not available at this time

Cisco fixes AsyncOS vulnerability exploited in zero-day attacks (CVE-2025-20393)

itsecuritynews.info - 16/Jan 15:04

Cisco has finally shipped security updates for its Email Security Gateway and Secure Email and Web Manager devices, which fix CVE-2025-20393, a...

Sorry! Image not available at this time

Cisco finally fixes AsyncOS zero-day exploited since November

bleepingcomputer.com - 16/Jan 09:20

​Cisco finally patched a maximum-severity AsyncOS zero-day exploited in attacks targeting Secure Email Gateway (SEG) appliances since November 2025....

Sorry! Image not available at this time

Hackers now exploiting critical Fortinet FortiSIEM flaw in attacks

bleepingcomputer.com - 16/Jan 10:29

Attackers are now exploiting a critical Fortinet FortiSIEM vulnerability with publicly available proof-of-concept exploit code. [...]

Sorry! Image not available at this time

ACF plugin bug gives hackers admin on 50,000 WordPress sites

bleepingcomputer.com - 20/Jan 22:12

A critical-severity vulnerability in the Advanced Custom Fields: Extended (ACF Extended) plugin for WordPress can be exploited remotely by...

Les derniers communiqués