zero day – Page 22 – MCYSEKA-Maritime Cyber Security Knowledge Archive

ZDI discloses four zero-day flaws in Microsoft Exchange

Researchers disclosed four zero-day flaws in Microsoft Exchange that can be remotely exploited to execute arbitrary code or disclose sensitive information on vulnerable installs. Trend Micro’s Zero Day Initiative (ZDI) disclosed four zero-day vulnerabilities in Microsoft Exchange that can be remotely exploited by an authenticated attacker to execute arbitrary code or disclose sensitive information on […]

The post ZDI discloses four zero-day flaws in Microsoft Exchange appeared first on Security Affairs.

November 4, 2023

0 comment

Apache ActiveMQ Vulnerability Exploited as Zero-Day

The recently patched Apache ActiveMQ vulnerability tracked as CVE-2023-46604 has been exploited as a zero-day since at least October 10.
The post Apache ActiveMQ Vulnerability Exploited as Zero-Day appeared first on SecurityWeek.

November 3, 2023

0 comment

Citrix Bleed: PoC Released for Citrix NetScaler Zero-Day Vulnerability

Two vulnerabilities were disclosed by Citrix, which were CVE-2023-4966 and CVE-2023-4967, with critical and high severities, respectively. Of these two, CVE-2023-4966 has been released with a publicly available PoC. This vulnerability is associated with a sensitive information disclosure score of 9.4 (Critical). This vulnerability existed in the Citrix Netscaler ADC and Netscaler Gateway versions before […]

The post Citrix Bleed: PoC Released for Citrix NetScaler Zero-Day Vulnerability appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News Platform.

October 26, 2023

0 comment

Winter Vivern APT exploited zero-day in Roundcube webmail software in recent attacks

Russia-linked threat actor Winter Vivern has been observed exploiting a zero-day flaw in Roundcube webmail software. Russian APT group Winter Vivern (aka TA473) has been observed exploiting a zero-day flaw in Roundcube webmail software on October 11, 2023. ESET researchers pointed out that is a different vulnerability than CVE-2020-35730, that the group exploited in other attacks. The Winter […]

The post Winter Vivern APT exploited zero-day in Roundcube webmail software in recent attacks appeared first on Security Affairs.

October 26, 2023

0 comment

Samsung Galaxy S23 Hacked at Pwn2Own Toronto 2023

Pwn2Own is a highly significant and influential annual hacking competition in the cybersecurity community. It serves as a platform for top researchers and hackers to demonstrate vulnerabilities in popular software and operating systems. The event plays a crucial role in identifying and addressing security weaknesses, benefiting both the security industry and end-users. Pwn2Own’s impact extends […]

The post Samsung Galaxy S23 Hacked at Pwn2Own Toronto 2023 appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News Platform.

October 25, 2023

0 comment

Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day

Russian APT Winter Vivern exploits a zero-day in the Roundcube webmail server in attacks targeting European governments.
The post Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day appeared first on SecurityWeek.

October 25, 2023

0 comment

Number of Cisco Devices Hacked via Zero-Day Remains High as Attackers Update Implant

The number of Cisco devices hacked via recent zero-days remains high, but the attackers have updated their implant.
The post Number of Cisco Devices Hacked via Zero-Day Remains High as Attackers Update Implant appeared first on SecurityWeek.

October 24, 2023

0 comment

Cisco Finds Second Zero-Day as Number of Hacked Devices Apparently Drops

Cisco has found a second zero-day vulnerability that has been exploited in recent attacks as the number of hacked devices has started dropping.
The post Cisco Finds Second Zero-Day as Number of Hacked Devices Apparently Drops appeared first on Security…

October 23, 2023

0 comment

Recent NetScaler Vulnerability Exploited as Zero-Day Since August

Mandiant says the recently patched Citrix NetScaler vulnerability CVE-2023-4966 had been exploited as zero-day since August.
The post Recent NetScaler Vulnerability Exploited as Zero-Day Since August appeared first on SecurityWeek.

October 18, 2023

0 comment

Tens of Thousands of Cisco Devices Hacked via Zero-Day Vulnerability

Tens of thousands of Cisco devices have reportedly been hacked via the exploitation of the zero-day vulnerability CVE-2023-20198.
The post Tens of Thousands of Cisco Devices Hacked via Zero-Day Vulnerability appeared first on SecurityWeek.

October 18, 2023

0 comment

1 … 20 21 22 23 24 … 37