Security Affairs
Microsoft launched its new Microsoft Defender Bounty Program
Microsoft announced this week it will pay up to $20,000 for security vulnerabilities in its Defender products.
SecurityWeek
Microsoft Offers Up to $20,000 for Vulnerabilities in Defender Products
Microsoft invites researchers to new bug bounty program focused on vulnerabilities in its Defender products.
The Hacker News
AI Solutions Are the New Shadow IT
AI Solutions Are the New Shadow IT - Ambitious Employees Tout New AI Tools, Ignore Serious SaaS Security Risks
Bleeping Computer
Microsoft launches Defender Bounty Program with $20,000 rewards
Microsoft has unveiled a new bug bounty program aimed at the Microsoft Defender security platform, with rewards between $500 and $20,000.
Latest Hacking News
Google Elaborates On Campaigns Exploiting A Now-Patched Zimbra Zero-Day
Months after ensuring that the patch actually works, Google has now disclosed more details about active exploitation of a Zimbra zero-day vulnerability. The tech giant explained how the threat actors exploited the Zimbra zero-day in
.webp)
Cyber Security News
Hackers Exploiting Zimbra 0-day to Attack Government Organizations
Zimbra Collaboration is an open-source solution software suite with an email server and web client for collaboration.
Bleeping Computer
Google: Hackers exploited Zimbra zero-day in attacks on govt orgs
Hackers leveraged a medium-severity security issue now identified as CVE-2023-37580 since June 29, nearly a month before the vendor addressed it in version 8.8.15 Patch 41of the software on July 25.
SecurityWeek
Over a Dozen Exploitable Vulnerabilities Found in AI/ML Tools
Bug hunters uncover over a dozen exploitable vulnerabilities in tools used to build chatbots and other types of AI/ML models.
Security Affairs
Zimbra zero-day exploited to steal government emails by 4 groups
Google TAG revealed that threat actors exploited a Zimbra Collaboration Suite zero-day (CVE-2023-37580) to steal emails from governments.
The Hacker News
Zero-Day Flaw in Zimbra Email Software Exploited by Four Hacker Groups
Zero-day flaw ( CVE-2023-37580) in Zimbra Collaboration email software was exploited by 4 groups, exposing email data and credentials.
SecurityWeek
Zimbra Zero-Day Exploited to Hack Government Emails
Google says a Zimbra zero-day from earlier this year, CVE-2023-37580, was exploited in several campaigns to hack government emails.
The Record
Hackers target Greece, Tunisia, Moldova, Vietnam and Pakistan with Zimbra zero-day
The attacks targeting government agencies were carried out by four different groups throughout the summer, Google's Threat Analysis Group found.
Bleeping Computer
Meet the Unique New "Hacking" Group: AlphaLock
A Russian hacking group known as AlphaLock is launching a "pentest" marketplace and training platform to empower a new generation of threat actors. Learn more from Flare about the new hacking group.
SecurityWeek
ICS Patch Tuesday: 90 Vulnerabilities Addressed by Siemens and Schneider Electric
Siemens and Schneider Electric’s Patch Tuesday advisories for November 2023 address 90 vulnerabilities affecting their products.
Cyber Security News
Burp Suite 2023.10.3.4 Released for Professional & Community - What's New!
developers at PortSwigger released a new version of Burp Suite for ethical hackers and security professionals, which is Burp Suite 2023.10.3.4
Infosecurity News
Veeam Patches Two Critical Bugs in Veeam ONE
Two flaws have near-maximum CVSS scores
The Hacker News
Offensive and Defensive AI: Let’s Chat(GPT) About It
Get the full story on the dangers of the rapidly growing consumer application, ChatGPT, and learn how to resist cyber crime.
The Hacker News
Critical Flaws Discovered in Veeam ONE IT Monitoring Software – Patch Now
Veeam ONE faces security crisis! Four vulnerabilities exposed. Learn how to protect your IT monitoring and analytics platform now.
Bleeping Computer
Veeam warns of critical bugs in Veeam ONE monitoring platform
Veeam released hotfixes today to address four vulnerabilities in the company's Veeam ONE IT infrastructure monitoring and analytics platform, two of them critical.
SecurityWeek
Cisco Patches 27 Vulnerabilities in Network Security Products
Cisco has released software updates to address 27 vulnerabilities in Cisco ASA, FMC, and FTD security products.
The Hacker News
PentestPad: Platform for Pentest Teams
Pen test team up with PentestPad to supercharge your performance & achieve exceptional results with automated report generation, real-time collaborati
Ars Technica
“This vulnerability is now under mass exploitation.” Citrix Bleed bug bites hard
By some estimates, 20,000 devices have already been hacked.
Cyber Security News
Hackers Exploit Roundcube Zero-day to Attack Government Email Servers
Cybersecurity researchers at ESET actively monitoring the "Winter Vivern," started exploiting a new zero-day XSS vulnerability in Roundcube.
Ars Technica
Pro-Russia hackers target inboxes with 0-day in webmail app used by millions
Previously unknown XSS in Roundcube let Winter Vivern steal government emails.
Infosecurity News
Winter Vivern: Zero-Day XSS Exploit Targets Roundcube Servers
ESET Research reported the vulnerability to the Roundcube team on October 12
SecurityWeek
Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day
Russian APT Winter Vivern exploits a zero-day in the Roundcube webmail server in attacks targeting European governments.
The Hacker News
Nation State Hackers Exploiting Zero-Day in Roundcube Webmail Software
Attention to all Roundcube users: Security researchers have discovered malicious activity from Winter Vivern.
Bleeping Computer
European govt email servers hacked using Roundcube zero-day
The Winter Vivern Russian hacking group has been exploiting a Roundcube Webmail zero-day since at least October 11 to attack European government entities and think tanks.
Cyber Security News
TinyMCE Text Editor Flaw Let Attackers Execute XSS payload
One of the major security problems that were fixed in TinyMCE 5.10.8 was a mutation cross-site scripting (mXSS) vulnerability.
The Hacker News
Vulnerability Scanning: How Often Should I Scan?
Discover the importance of continuous vulnerability scanning in 2023 and how it can protect your business from emerging threats.
Cyber Security News
IBM QRadar SIEM XSS Flaw Let Attackers Execute JavaScript code
Two medium-severity vulnerabilities have been discovered in the widely used IBM QRadar SIEM, associated with Cross-Site Scripting (XSS) and Information disclosure.
The Hacker News
Over 17,000 WordPress Sites Compromised by Balada Injector in September 2023
Over 17,000 WordPress sites hit by Balada Injector malware in Sept 2023, double the August numbers
SecurityWeek
ICS Patch Tuesday: Siemens Ruggedcom Devices Affected by Nozomi Component Flaws
ICS Patch Tuesday: Siemens and Schneider Electric release over a dozen advisories addressing more than 40 vulnerabilities.
Cyber Security News
SAP Patches for XSS, Log Injection & Other Vulnerabilities
SAP has released the security patches for the Patch Day of October 2023 in which they have a release of new Security Notes and 2 updates.
SecurityWeek
SAP Releases 7 New Notes on October 2023 Patch Day
SAP has released seven new notes as part of its October 2023 Security Patch Day, all rated ‘medium severity’.
Cyber Security News
HackerGPT: A ChatGPT Empowered Penetration Testing Tool
HackerGPT is a ChatGPT-enabled penetrating testing tool that can help with network hacking, mobile hacking, different hacking tactic..
Ars Technica
Thousands of WordPress sites have been hacked through tagDiv plugin vulnerability
If a site is redirecting visitors to scam sites, it was likely hacked by Balada.
Bleeping Computer
Over 17,000 WordPress sites hacked in Balada Injector attacks last month
Multiple Balada Injector campaigns have compromised and infected over 17,000 WordPress sites using known flaws in premium theme plugins.
SecurityWeek
Recently Patched TagDiv Plugin Flaw Exploited to Hack Thousands of WordPress Sites
Recently patched TagDiv Composer plugin vulnerability exploited to hack thousands of WordPress sites as part of the Balada Injector campaign.
The Hacker News
Supermicro's BMC Firmware Found Vulnerable to Multiple Critical Vulnerabilities
Multiple security flaws in Supermicro's BMC firmware pose severe risks. Know the risks from CVE-2023-40284 to CVE-2023-40290.
Cyber Security News
Top 10 SaaS Security Risks and How to Mitigate Them
Top 10 SaaS Security Risks and How to Mitigate Them. 1. Data Breaches, 2. Account Hijacking, 3. Lack of Identity and Access Management (IAM).
Trend Micro
Exposing Infection Techniques Across Supply Chains and Codebases
This entry delves into threat actors' intricate methods to implant malicious payloads within seemingly legitimate applications and codebases.
Ars Technica
Vulnerabilities in Supermicro BMCs could allow for unkillable server rootkits
With the ability to manage huge fleets of servers, BMCs are ideal places to stash malware.
Bleeping Computer
Enhancing your application security program with continuous monitoring
Pen Testing as a Service and Traditional web application pen testing offers two different approaches to securing your applications. Learn more from Outpost24 on which approach may be best for your business.
SecurityWeek
New Supermicro BMC Vulnerabilities Could Expose Many Servers to Remote Attacks
Supermicro has released BMC IPMI firmware updates to address multiple vulnerabilities impacting select motherboard models.
The Hacker News
API Security Trends 2023 – Have Organizations Improved their Security Posture?
For businesses, API breaches spell disaster. Find out how inadequate security measures can lead to financial losses and customer data leaks.
Bleeping Computer
New BunnyLoader threat emerges as a feature-rich malware-as-a-service
Security researchers discovered a new malware-as-a-service (MaaS) named 'BunnyLoader' advertised on multiple hacker forums as a fileless loader that can steal and replace the contents of the system clipboard.
DarkReading
Move Over, MOVEit: Critical Progress Bug Infests WS_FTP Software
In the wake of Cl0p's MOVEit rampage, Progress Software is sending file-transfer customers scrambling again — this time to patch a critical bug that is easily exploitable with a specially crafted HTTPS POST request.
Cyber Security News
What is Origin Server? How To Protect them? A Detailed Guide
Origin servers are critical in the web ecosystem by managing incoming requests and delivering website content to users. Whenever a user accesses a webpage, a request is initiated to the origin server to fetch the required content.
The Hacker News
Progress Software Releases Urgent Hotfixes for Multiple Security Flaws in WS_FTP Server
Progress Software releases hotfixes for critical CVE-2023-40044 and 7 other vulnerabilities in WS_FTP Server
SecurityWeek
Progress Software Patches Critical Pre-Auth Flaws in WS_FTP Server Product
Critical flaws in Progress Software's WS_FTP product allows pre-authenticated attackers to wreak havoc on the underlying operating system.
Cyber Security News
OPNsense Firewall Flaws Let Attackers Employ XSS to Escalate Privileges
The Flaw resides in the OPNsense dashboard that displays widgets such as running services, gateways, and more with information about the system.
The Hacker News
Threat Report: The High Tech Industry Targeted the Most with 46% of NLX-Tagged Attack Traffic
Dive into the world of cyber threats with our Network Effect Threat Report. Learn about multi-customer attacks and which industries are most targeted.
The Hacker News
Critical JetBrains TeamCity Flaw Could Expose Source Code and Build Pipelines to Attackers
Your CI/CD pipeline may be at risk! A critical security vulnerability (CVE-2023-42793) has been uncovered in JetBrains TeamCity software.
Cyber Security News
Roundcube Webmail XSS Vulnerability Exposes Sensitive Data
A cross-site scripting (XSS) vulnerability tracked as CVE-2023-43770 in Roundcube Webmail has been found, result in information leakage.
Cyber Security News
Magento Security Checklist: 8 Steps To a Secure Magento Store - 2023
Magento Security Checklist : 1. Update to the Latest Version 2. Ensure a Strong Password 3. Limit Magento Admin Login Attempts 4. Switch 2FA.
The Hacker News
Critical Security Flaws Exposed in Nagios XI Network Monitoring Software
Attention IT admins! Update Nagios XI to version 5.11.2 now. The network monitoring software has patched four critical security flaws .
Cyber Security News
Fortinet FortiOS Flaw Let Attacker Execute Malicious JavaScript Code
A high-severity cross-site scripting (XSS) vulnerability tracked as (CVE-2023-29183) affecting several FortiOS and FortiProxy versions has been patched by Fortinet.
SecurityWeek
Fortinet Patches High-Severity Vulnerabilities in FortiOS, FortiProxy, FortiWeb Products
Fortinet has released patches for a high-severity cross-site scripting vulnerability impacting its enterprise firewalls and switches.
Cyber Security News
Threat and Vulnerability Roundup For The Week Of 10th to September 16th
This week's Threat and Vulnerability Roundup from Cyber Writes brings you the most recent cybersecurity news.
SecurityWeek
Azure HDInsight Flaws Allowed Data Access, Session Hijacking, Payload Delivery
Orca Security details XSS vulnerabilities in Azure HDInsight that could lead to information leaks, session hijacking, and payload delivery
DarkReading
Microsoft Azure HDInsight Plagued With XSS Vulnerabilities
To boot, the technology could be riddled with other flaws via its Apache services components, a security vendor says.
The Hacker News
Researchers Detail 8 Vulnerabilities in Azure HDInsight Analytics Service
Microsoft Azure HDInsight service had 8 XSS vulnerabilities. Learn how they could lead to data breaches, session hijacking attacks.
Bleeping Computer
Adobe warns of critical Acrobat and Reader zero-day exploited in attacks
Adobe has released security updates to patch a zero-day vulnerability in Acrobat and Reader tagged as exploited in attacks.
Cyber Security News
Proton Mail Vulnerabilities Would Allow Attackers to Steal Emails
A group of Researchers unearthed critical code Proton Mail vulnerabilities that could have jeopardized the security of Proton Mail, a renowned privacy-focused webmail service.
SecurityWeek
Vulnerabilities Allow Hackers to Hijack, Disrupt Socomec UPS Devices
A researcher has found 7 vulnerabilities in Socomec UPS products that can be exploited to hijack and disrupt devices.
Bleeping Computer
The Initial Access Broker Economy: A Deep Dive into Dark Web Hacking Forums
Initial access brokers (IAB) are cybercriminals that focus on gaining access to corporate environments, which they then auction off to other hackers. Learn more from Flare about the IAB economy and how it affects your business.
Cyber Security News
Cacti Cross-Site-Scripting Vulnerability Let Attacker Poison Database
Cacti is a web-based open-source network monitoring, fault, and configuration management tool that acts as an RRDtool (round-robin database tool).
Cyber Security News
Top 10 Best DDoS Protection Tools & Services - 2023
Best DDoS Protection Tools: 1. AppTrana 2. Cloudflare 3. Azure DDoS Protection 4. AWS Shield 5. SolarWinds SEM Tool Arbor Networks.
Cyber Security News
Threat and Vulnerability Roundup for the week of August 27th to September 2nd
The latest attack techniques, significant weaknesses, and exploits have all been highlighted. We also provide the most latest software upgrades available to keep your devices secure.
SecurityWeek
Splunk Patches High-Severity Flaws in Enterprise, IT Service Intelligence
Splunk has released patches for multiple high-severity vulnerabilities impacting Splunk Enterprise and IT Service Intelligence.
The Hacker News
Cyberattacks Targeting E-commerce Applications
Cyberattacks are common and no company is immune. Regular scans & vulnerability assessments are crucial. Understand the eight key areas.
The Record
CISA touts ‘tremendous growth’ in vulnerability disclosure platform
The U.S. federal government’s internal clearinghouse for cybersecurity vulnerabilities took in more than 1,300 valid reports in its first 18 months and prompted decisive action on most of them, saving as much as $4.35 million in estimated response and recovery efforts, according to the program’s first annual report.
CSO
Customer-configured rules now the biggest contributor to mitigated traffic
New research also shows old CVEs are still exploited en masse with HTTP anomalies the most common API attack vector.
Cyber Security News
10 Best ZTNA Solutions (Zero Trust Network Access) in 2023
Best ZTNA Solutions: 1. Perimeter 81 2. Zscaler 3. Cisco 4. Fortinet 5. Cloudflare 6. Akamai 7. Palo Alto Networks 8. Forcepoint.
SecurityWeek
Jenkins Patches High-Severity Vulnerabilities in Multiple Plugins
Jenkins has announced patches for high and medium-severity vulnerabilities impacting several of the open source automation tool’s plugins.
Security Affairs
Alarming lack of cybersecurity practices on world’s most popular websites
The world’s most popular websites lack basic cybersecurity hygiene, an investigation by Cybernews shows. Do you happen to love exploring DIY ideas on Pinterest? Scrolling through IMDB to pick the next movie to watch? Or simply scrolling through Facebook to see what your friends and enemies have been up to? The Cybernews research team has […]
Bleeping Computer
Triple Extortion Ransomware and the Cybercrime Supply Chain
Ransomware attacks continue to grow both in sophistication and quantity. Learn more from Flare about ransomware operation's increasing shift to triple extortion.
Cyber Security News
10 Best Secure Web Gateway Vendors in 2023
Best Secure Web Gateway Vendors : 1. Perimeter 81 2. Zscaler 3. Cisco 4. SonicWall 5. Cloudflare 6. Barracuda 7. McAfee 8. Check Point
Infosecurity News
Multiple Flaws Found in the Avada WordPress Theme and Plugin
The security flaws were uncovered by Patchstack security researcher Rafie Muhammad
SecurityWeek
SAP Patches Critical Vulnerability in PowerDesigner Product
SAP has fixed over a dozen new vulnerabilities with its Patch Tuesday updates, including a critical flaw in its PowerDesigner product.
Cyber Security News
SAP Security Update: 16 Flaws in Multiple SAP Products Addressed
SAP has released patches for 16 vulnerabilities with Critical, High, Medium, and Low severities. The CVSS scores for these vulnerabilities are between 3.7 (Low) to 9.8 (Critical) which contributes to 1 Critical, 6 High, 7 Medium, and 1 Low severity vulnerability. One of the vulnerability CVSS scores is yet to be confirmed.
Bleeping Computer
Chrome malware Rilide targets enterprise users via PowerPoint guides
The malicious Rilide Stealer Chrome browser extension has returned in new campaigns targeting crypto users and enterprise employees to steal credentials and crypto wallets.
Security Affairs
OWASP Top 10 for LLM (Large Language Model) applications is out!
The OWASP Top 10 for LLM (Large Language Model) Applications version 1.0 is out, it focuses on the potential security risks when using LLMs. OWASP released the OWASP Top 10 for LLM (Large Language Model) Applications project, which provides a list of the top 10 most critical vulnerabilities impacting LLM applications. The project aims to educate […]
Bleeping Computer
Over 640 Citrix servers backdoored with web shells in ongoing attacks
Hundreds of Citrix Netscaler ADC and Gateway servers have already been breached and backdoored in a series of attacks targeting a critical remote code execution (RCE) vulnerability tracked as CVE-2023-3519.
Security Affairs
Three flaws in Ninja Forms plugin for WordPress impact 900K sites
Experts warn of vulnerabilities impacting the Ninja Forms plugin for WordPress that could be exploited for escalating privileges and data theft. The Ninja Forms plugin for WordPress is affected by multiple vulnerabilities (tracked as CVE-2023-37979, CVE-2023-38386, and CVE-2023-38393) that can be exploited by threat actors to escalate privileges and steal sensitive data. The WordPress plugin Ninja […]
The Hacker News
Multiple Flaws Found in Ninja Forms Plugin Leave 800,000 Sites Vulnerable
Patchstack reports security vulnerabilities in the popular Ninja Forms plugin for WordPress (CVE-2023-37979, CVE-2023-38386, CVE-2023-38393).
Latest Hacking News
Zimbra Patched An XSS Zero-Day Vulnerability Under Active Attack
Zimbra recently addressed a severe zero-day vulnerability found actively exploited in the wild. While the vulnerability previously received a fix, Zimbra re-released the XSS zero-day patch with the latest software version, urging users to update. Active
SecurityWeek
In Other News: Data Breach Cost Rises, Russia Targets Diplomats, Tracker Alerts in Android
Weekly cybersecurity news roundup of noteworthy stories that might have slipped under the radar for the week of July 24, 2023.
The Hacker News
A Data Exfiltration Attack Scenario: The Porsche Experience
Whoa! Porsche's API server allows requests from origins other than porsche.com! Find out how this could be exploited and what it means for businesses.
SecurityWeek
Zimbra Patches Exploited Zero-Day Vulnerability
Zimbra has released patches for a cross-site scripting (XSS) vulnerability that has been exploited in malicious attacks.
Security Affairs
Zimbra fixed actively exploited zero-day CVE-2023-38750 in ZCS
Zimbra addressed a zero-day vulnerability exploited in attacks aimed at Zimbra Collaboration Suite (ZCS) email servers. Two weeks ago Zimbra urged customers to manually install updates to fix a zero-day vulnerability, now tracked as CVE-2023-38750, that is actively exploited in attacks against Zimbra Collaboration Suite (ZCS) email servers. Zimbra Collaboration Suite is a comprehensive open-source messaging and […]
Bleeping Computer
Zimbra patches zero-day vulnerability exploited in XSS attacks
Two weeks after the initial disclosure, Zimbra has released security updates that patch a zero-day vulnerability exploited in attacks targeting Zimbra Collaboration Suite (ZCS) email servers.
Bleeping Computer
WordPress Ninja Forms plugin flaw lets hackers steal submitted data
Popular WordPress form-building plugin Ninja Forms contains three vulnerabilities that could allow attackers to achieve privilege escalation and steal user data.
Infosecurity News
High Severity Vulnerabilities Discovered in Ninja Forms Plugin
The popular forms builder plugin for WordPress has over 900,000 active installations
Bleeping Computer
Over 400,000 corporate credentials stolen by info-stealing malware
The analysis of nearly 20 million information-stealing malware logs sold on the dark web and Telegram channels revealed that they had achieved significant infiltration into business environments.
Cyber Security News
Over 15000+ Citrix Servers Vulnerable to Code Injection Attacks
Due to an unauthenticated critical RCE bug, formerly exploited as a zero-day in the wild by the threat actors, thousands of Citrix Netscaler ADC and Gateway servers were exposed.
Cyber Security News
Weekly Vulnerability Roundup: A Compiled List of Vulnerabilities and Exploits
Our weekly vulnerability roundup will provide coverage of newly discovered vulnerabilities, as well as those exploited to compromise organizations.
Bleeping Computer
Over 15K Citrix servers likely vulnerable to CVE-2023-3519 attacks
Thousands of Citrix Netscaler ADC and Gateway servers exposed online are likely vulnerable against a critical remote code execution (RCE) bug exploited by unauthenticated attackers in the wild as a zero-day.
Bleeping Computer
Over 15K Citrix servers vulnerable to CVE-2023-3519 RCE attacks
Thousands of Citrix Netscaler ADC and Gateway servers exposed online are likely vulnerable against a critical remote code execution (RCE) bug exploited by unauthenticated attackers in the wild as a zero-day.
Cyber Security News
What is Dynamic Application Security Testing (DAST) ?
DAST stands for Dynamic Application Security Testing, a method of testing software applications for security vulnerabilities.
Bleeping Computer
CISA: Citrix RCE bug exploited to breach critical infrastructure org
Threat actors have breached the network of a U.S. organization in the critical infrastructure sector after exploiting a zero-day RCE vulnerability currently identified as CVE-2023-3519, a critical-severity issue in NetScaler ADC and Gateway that Citrix patched this week.
Bleeping Computer
Netscaler ADC bug exploited to breach US critical infrastructure org
The US government is warning that threat actors breached the network of a U.S. organization in the critical infrastructure sector after exploiting a zero-day RCE vulnerability currently identified as CVE-2023-3519, a critical-severity issue in NetScaler ADC and Gateway that Citrix patched this week.
The Hacker News
Sophisticated BundleBot Malware Disguised as Google AI Chatbot and Utilities
Beware of BundleBot, a stealthy malware strain that's stealing sensitive info from compromised hosts! It spreads through Facebook Ads.
Naked Security
S3 Ep144: When threat hunting goes down a rabbit hole
Latest episode – check it out now!
Bleeping Computer
Threat Actors are Targeting Your Web Applications – Here’s How To Protect Them
Orgs must take proactive measures to safeguard their web applications and eliminate weak points. Learn more from Outpost24 on these threats, attack strategies, and the steps you can take to protect your web applications.
CSO
Initial access broker posts targeting banks increase on dark web
Financial institutions should continuously monitor the dark web to identify threats and prevent breaches, Searchlight Cyber advises in a new study.
SecurityWeek
Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned
Citrix has patched several vulnerabilities, including CVE-2023-3519, a critical remote code execution zero-day that has been exploited
Security Affairs
Citrix warns of actively exploited zero-day in ADC and Gateway
Citrix is warning customers of an actively exploited critical vulnerability in NetScaler Application Delivery Controller (ADC) and Gateway. Citrix is warning customers of a critical vulnerability, tracked as CVE-2023-3519 (CVSS score: 9.8), in NetScaler Application Delivery Controller (ADC) and Gateway that is being actively exploited in the wild. The vulnerability Tracked as CVE-2023-3519 (CVSS score: 9.8), the vulnerability is […]
The Hacker News
Zero-Day Attacks Exploited Critical Vulnerability in Citrix ADC and Gateway
Critical security flaw in Citrix NetScaler ADC and Gateway being actively exploited! CVE-2023-3519 allows unauthenticated remote code execution.
Bleeping Computer
New critical Citrix ADC and Gateway flaw exploited as zero-days
Citrix today is alerting customers of a critical-severity vulnerability (CVE-2023-3519) in NetScaler ADC and NetScaler Gateway that already has exploits in the wild, and "strongly urges" to install updated versions without delay.
Bleeping Computer
New critical Citrix ADC and Gateway flaw exploited as zero-day
Citrix today is alerting customers of a critical-severity vulnerability (CVE-2023-3519) in NetScaler ADC and NetScaler Gateway that already has exploits in the wild, and "strongly urges" to install updated versions without delay.
Naked Security
Zimbra Collaboration Suite warning: Patch this 0-day right now (by hand)!
Zimbra didn’t actually say, “Do not delay/Do it today,” but they did say, “We kindly request your cooperation to apply the fix manually.”
DarkReading
Zimbra Zero-Day Demands Urgent Manual Update
A bug in Zimbra email servers is already being exploited in the wild, Google TAG researchers warn.
SecurityWeek
Hackers Target Reddit Alternative Lemmy via Zero-Day Vulnerability
Several instances of the Reddit alternative Lemmy were hacked in recent days by attackers who had exploited a zero-day vulnerability.
SecurityWeek
Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day
Google researchers have discovered that a Zimbra zero-day XSS vulnerability has been exploited in the wild
The Hacker News
Zimbra Warns of Critical Zero-Day Flaw in Email Software Amid Active Exploitation
Zimbra users, be cautious! Zimbra has warned of an actively exploited zero-day vulnerability in its software. Apply the manual fix ASAP to eliminate
Security Affairs
Zimbra urges customers to manually fix actively exploited zero-day reported by Google TAG
Zimbra has released updates to address a zero-day vulnerability actively exploited in attacks aimed at Zimbra Collaboration Suite (ZCS) email servers. Zimbra urges customers to manually install updates to fix a zero-day vulnerability that is actively exploited in attacks against Zimbra Collaboration Suite (ZCS) email servers. Zimbra Collaboration Suite is a comprehensive open-source messaging and […]
Bleeping Computer
Zimbra urges admins to manually fix zero-day exploited in attacks
Zimbra urged admins today to manually fix a zero-day vulnerability actively exploited to target and compromise Zimbra Collaboration Suite (ZCS) email servers.
SecurityWeek
SAP Patches Critical Vulnerability in ECC and S/4HANA Products
SAP on July 2023 Security Patch Day released 16 new security notes, including one addressing a critical vulnerability in ECC and S/4HANA
Infosecurity News
Android OS Tools Fuel Cybercrime Spree, Prey on Digital Users
According to Resecurity, the trend poses challenges for online banking and payment systems
Cyber Security News
Critics Mastodon "TootRoot" Vulnerability Allows Server Hijacking
Mastodon has recently fixed “TootRoot” in which threat actors can create a backdoor on the servers by sending crafted media files.
SecurityWeek
Critical Vulnerability Can Allow Takeover of Mastodon Servers
A critical vulnerability in the Mastodon social networking platform may allow attackers to take over target servers.
Bleeping Computer
Critical TootRoot bug lets attackers hijack Mastodon servers
Mastodon, the free and open-source decentralized social networking platform, has patched four vulnerabilities, including a critical one that allows hackers to create arbitrary files on instance-hosting servers using specially crafted media files.
SecurityWeek
Vulnerabilities in PiiGAB Product Could Expose Industrial Organizations to Attacks
Potentially serious vulnerabilities discovered by researchers in a PiiGAB product could expose industrial organizations to hacker attacks.
The Hacker News
Mastodon Social Network Patches Critical Flaws Allowing Server Takeover
Mastodon, the decentralized social network, releases critical security update. Update your instance ASAP to prevent potential DoS and RCE attacks.
Ars Technica
Mastodon fixes critical “TootRoot” vulnerability allowing node hijacking
Most critical of the bugs allowed attackers to root federated instances.
Bleeping Computer
Cisco warns of bug that lets attackers break traffic encryption
Cisco warned customers today of a high-severity vulnerability impacting some data center switch models and allowing attackers to tamper with encrypted traffic.
SecurityWeek
Vulnerability in Cisco Enterprise Switches Allows Attackers to Modify Encrypted Traffic
Cisco says a high-severity vulnerability in Nexus 9000 series switches could allow attackers to intercept and modify encrypted traffic.
The Hacker News
Evasive Meduza Stealer Targets 19 Password Managers and 76 Crypto Wallets
Your crypto wallet, your secrets, even your games – NOTHING is safe from Meduza Stealer. Discover how this crimeware stays ahead of the game.
SecurityWeek
MITRE Updates CWE Top 25 Most Dangerous Software Weaknesses
Use-after-free and OS command injection vulnerabilities reach the top five most dangerous software weaknesses in the 2023 CWE Top 25 list.
The Hacker News
Critical SQL Injection Flaws Expose Gentoo Soko to Remote Code Execution
Critical SQL injection vulnerabilities found in Gentoo Soko! Exploiting these flaws could lead to remote code execution (RCE) on affected systems.
Bleeping Computer
Inside Threat Actors: Dark Web Forums vs. Illicit Telegram Communities
In this article, @flaresystems explores threat actors and their activities on dark web forums versus illicit Telegram communities.
Cyber Security News
Hackers compromised the Roundcube Email Servers of Ukrainian organizations
A threat group connected to Russia's GRU, hacked the Roundcube email servers of over 40 Ukrainian organizations, including government bodies.
Cyber Security News
50 World's Best Penetration Testing Companies - 2023
Best Penetration Testing Companies: 1. Crowdstrike 2. Secureworks 3. Rapid7 4. Acunetix 5. Trellix 6. Invicti 7. Cobalt 8. Intruder.
Security Affairs
Russia-linked APT28 hacked Roundcube email servers of Ukrainian entities
Russia-linked APT28 group hacked into Roundcube email servers belonging to multiple Ukrainian organizations. A joint investigation conducted by Ukraine’s Computer Emergency Response Team (CERT-UA) and Recorded Future revealed that the Russia-linked APT28 group hacked into Roundcube email servers belonging to multiple Ukrainian organizations. The APT28 group (aka Fancy Bear, Pawn Storm, Sofacy Group, Sednit, BlueDelta, and STRONTIUM) has been active since at least 2007 […]
Bleeping Computer
The Great Exodus to Telegram: A Tour of the New Cybercrime Underground
Threat actors are moving from the dark web to illicit Telegram channels specializing in cybercrime. This Flare article examines why threat actors are shifting from Tor and provides guidance on monitoring Telegram channels.
Bleeping Computer
New Mystic Stealer malware increasingly used in attacks
A new information-stealing malware named 'Mystic Stealer,' has been promoted on hacking forums and darknet markets since April 2023, quickly gaining traction in the cybercrime community.
Security Affairs
Security Affairs newsletter Round 424 by Pierluigi Paganini – International edition
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Law enforcement shutdown a long-standing DDoS-for-hire service A Russian national charged for committing LockBit Ransomware attacks […]
Cyber Security News
10 Most Dangerous Injection Attacks in 2023
Injection Attack Types: *1. Code injection 2. SQL injection 3. Command injection 4. Cross-site scripting 5. XPath injection 6. CRLF injection
Cyber Security News
XSS Vulnerabilities in Azure Services Let Attackers Execute Malicious Scripts
Two severe vulnerabilities in Azure services, Azure Bastion and Azure Container Registry—that allow Cross-Site Scripting (XSS) by leveraging a flaw in the postMessage iframe have been discovered.
DarkReading
XSS Vulnerabilities Found in Microsoft Azure Cloud Services
Microsoft quickly issued patches for the two security issues, which could allow unauthorized access to cloud sessions.
Infosecurity News
Researchers Uncover XSS Vulnerabilities in Azure Services
They could allow unauthorized access to sessions within the compromised Azure service iframe
The Hacker News
Severe Vulnerabilities Reported in Microsoft Azure Bastion and Container Registry
🔓 Two severe security vulnerabilities have been disclosed in Azure Bastion and Azure Container Registry, potentially enabling unauthorized access.
Cyber Security News
18 Best Web Filtering Solutions - 2023
Best Web Filtering Solutions: 1. Perimeter81 2. Cisco Umbrella 3. Symantec WebFilter 4. Barracuda Web Security Gateway 5. McAfee Web Gateway
Cyber Security News
25 Best Cloud Service Providers (Public and Private) in 2023
Best Cloud Service Providers: 1. AWS 2. Google Cloud 3. Azure 4. Oracle Cloud 5. VMware 6. DigitalOcean 7. Rackspace 8. IBM Cloud.
Latest Hacking News
Jetpack Plugin Patched A Critical Vulnerability Triggering WordPress Force-Installs
The popular and one of the most-used WordPress plugins, Jetpack recently addressed a critical security issue. Despite no active exploitation, WordPress force installed Jetpack plugin updates to websites to patch the vulnerability. Jetpack WordPress Plugin Vulnerability Reportedly,
Bleeping Computer
7 Stages of Application Testing: How to Automate for Continuous Security
There are seven main stages of a complex pen testing process that must be followed in order to effectively assess an application's security posture. Learn more from OutPost24 about these stages and how PTaaS can find flaws in web applications,
.png)
Cyber Security News
Why Do You Need a Cloud-native Web Application Firewall (WAF)?
With your on-premise security solution comprising hardware, software, signatures, rules, and even machine learning, you may think your applications are fully protected.
Latest Hacking News
XSS Flaw Riddled Beautiful Cookie Consent Banner WP Plugin
Heads up, WordPress admins! It’s time to update your websites with the latest Beautiful Cookie Consent Banner plugin version, as the developers addressed a serious cross-site scripting (XSS) flaw. Serious Security Flaw Patched In Beautiful Cookie
The Hacker News
Barracuda Warns of Zero-Day Exploited to Breach Email Security Gateway Appliances
Alert: Hackers are exploiting a new zero-day vulnerability to breach Barracuda's Email Security Gateway appliances.
Bleeping Computer
Hackers target 1.5M WordPress sites with cookie consent plugin exploit
Ongoing attacks are targeting an Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability in a WordPress cookie consent plugin named Beautiful Cookie Consent Banner with more than 40,000 active installs.
Cyber Security News
Bug Bounty program for Android Apps - Rewards up to $15,000
Google’s Bug Bounty Program for Android has been set with a maximum reward of $15,000.
Bleeping Computer
Cisco warns of critical switch bugs with public exploit code
Cisco warned customers today of four critical remote code execution vulnerabilities with public exploit code affecting multiple Small Business Series Switches.
Bleeping Computer
Parental control app with 5 million downloads vulnerable to attacks
Kiddowares 'Parental Control - Kids Place' app for Android is impacted by multiple vulnerabilities that could enable attackers to upload arbitrary files on protected devices, steal user credentials, and allow children to bypass restrictions without the parents noticing.
Bleeping Computer
Hackers target Wordpress plugin flaw after PoC exploit released
Hackers are actively exploiting a recently fixed vulnerability in the WordPress Advanced Custom Fields plugin roughly 24 hours after a proof-of-concept (PoC) exploit was made public.
Cyber Security News
Hackers Aggressively Exploiting WordPress Plugin XSS Flaw - 2 Million Sites Affected
Web applications and third-party tools become more prevalent, the risk of cyber-attacks increases due to a larger attack surface
Security Affairs
Security Affairs newsletter Round 418 by Pierluigi Paganini – International edition
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by […]
Cyber Security News
Over 2 Million WordPress Websites Exposed to XSS Attacks
Patchstack security researchers recently warned that 'Advanced Custom Fields' and 'Advanced Custom Fields Pro' WordPress plugins.
Security Affairs
WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks
A reflected cross-site scripting vulnerability is the Advanced Custom Fields plugin for WordPress exposed over 2 million sites to hacking. Assetnote researchers discovered a reflected cross-site scripting vulnerability, tracked as CVE-2023-29489 (CVSS score: 6.1), in the Advanced Custom Fields plugin for WordPress. The ACF field builder allows users to quickly and easily add fields to […]
The Hacker News
New Vulnerability in Popular WordPress Plugin Exposes Over 2 Million Sites to Cyberattacks
A security flaw has been discovered in the Advanced Custom Fields plugin that could allow for reflected cross-site scripting attacks.
Bleeping Computer
WordPress custom field plugin bug exposes over 1M sites to XSS attacks
Security researchers warn that the 'Advanced Custom Fields' and 'Advanced Custom Fields Pro' WordPress plugins, with millions of installs, are vulnerable to cross-site scripting attacks (XSS).
Latest Hacking News
Critical Vulnerabilities Spotted In Zyxel Firewall
Heads up, Zyxel users! The vendors have patched a few critical vulnerabilities in Zyxel Firewall that could allow remote command execution attacks. Users must rush to update their devices with the latest software releases to
Security Affairs
Cisco discloses a bug in the Prime Collaboration Deployment solution
Cisco is working on a patch for a bug in the Prime Collaboration Deployment solution that was reported by a member of NATO’s Cyber Security Centre (NCSC). Cisco informed its customers that it’s working on a patch for cross-site scripting (XSS) issue, tracked as CVE-2023-20060 (CVSS score 6.1), affecting its Prime Collaboration Deployment product. The vulnerability […]
Security Affairs
Zyxel fixed a critical RCE flaw in its firewall devices and urges customers to install the patches
A vulnerability impacting Zyxel firewalls, tracked as CVE-2023-28771, can be exploited to execute arbitary code on vulnerable devices. Researchers from TRAPA Security have discovered a critical remote code execution vulnerability, tracked as CVE-2023-28771 (CVSS score 9.8), impacting Zyxel Firewall. The vulnerability is an improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, […]
Bleeping Computer
PrestaShop fixes bug that lets any backend user delete databases
The open-source e-commerce platform PrestaShop has released a new version that addresses a critical-severity vulnerability allowing any back-office user to write, update, or delete SQL databases regardless of their permissions.
Bleeping Computer
Cisco discloses XSS zero-day flaw in server management tool
Cisco disclosed today a zero-day vulnerability in the company's Prime Collaboration Deployment (PCD) software that can be exploited for cross-site scripting attacks.
Bleeping Computer
Google: Ukraine targeted by 60% of Russian phishing attacks in 2023
Google's Threat Analysis Group (TAG) has been monitoring and disrupting Russian state-backed cyberattacks targeting Ukraine's critical infrastructure in 2023.
Security Affairs
Google TAG warns of Russia-linked APT groups targeting Ukraine
The researchers from Google TAG are warning of Russia-linked threat actors targeting Ukraine with phishing campaigns. Russia-linked threat actors launched large-volume phishing campaigns against hundreds of users in Ukraine to gather intelligence and aimed at spreading disinformation, states Google’s Threat Analysis Group (TAG). In Q1 2023, threat actors linked to Russia’s military intelligence service focused their phishing […]
.jpg)
The Hacker News
Google TAG Warns of Russian Hackers Conducting Phishing Attacks in Ukraine
Google TAG identifies state-sponsored cyber actor FROZENLAKE (aka APT28, Fancy Bear, and more) conducting phishing campaigns to extract intelligence.
Cyber Security News
Top 15 Best Ethical Hacking Tools - 2023
Best Ethical Hacking Tools: 1. Wireshark 2.NMAP 3. Burp Suite 4. Metasploit 5.Nikto 6. Intruder 7. Aircrack-Ng 8. Nessus 9. Acunetix and more
Cyber Security News
Pakistan Hackers Attack Indian Edu Sectors Using Weaponised Office Documents
SentinelLabs recently discovered a series of malicious Office files spreading the notorious Crimson RAT malware.
Bleeping Computer
Dutch Police mails RaidForums members to warn they’re being watched
Dutch Police is sending emails to former RaidForums members, asking them to delete stolen data and stop illegal cyber activities and warning that they are not anonymous.
Security Affairs
Fortinet fixed a critical vulnerability in its Data Analytics product
Fortinet addressed a critical vulnerability that can lead to remote, unauthenticated access to Redis and MongoDB instances. Fortinet has addressed a critical vulnerability, tracked as CVE-2022-41331 (CVSS score of 9.3), in its Fortinet FortiPresence data analytics solution. FortiPresence is a comprehensive data analytics solution designed for analyzing user traffic and deriving usage patterns. Successful exploitation can […]
Bleeping Computer
How to Secure Web Applications in a Growing Digital Attack Surface
External web applications can prove difficult to secure and are often targeted by hackers due to the range of vulnerabilities they may contain. These are 10 Common web application security risks you should know about.
The Hacker News
Newly Discovered "By-Design" Flaw in Microsoft Azure Could Expose Storage Accounts to Hackers
A "by-design flaw" in Azure could be exploited to gain unauthorized access, move laterally, and execute remote code.
Cyber Security News
Balada Injector - Massive Ongoing WordPress Malware Infected Over 1 Million Websites
A cyber attack campaign targeting WordPress websites has recently caused significant concern, with experts estimating that up to one million websites may have been compromised.
Security Affairs
Sophos patches three issues in the Sophos Web Security appliance, one of them rated as critical
Sophos addressed three vulnerabilities in Sophos Web Appliance, including a critical flaw that can lead to code execution. Cybersecurity vendor Sophos addressed three vulnerabilities in Sophos Web Appliance, including a critical flaw, tracked as CVE-2023-1671 (CVSS score of 9.8), that can lead to code execution. The CVE-2023-1671 flaw is a pre-auth command injection issue that […]
Bleeping Computer
Hackers use Rilide browser extension to bypass 2FA, steal crypto
A new malware strain called Rilide has been targeting Chromium-based web browsers like Google Chrome, Brave, Opera, and Microsoft Edge, to monitor user browsing history, snap screenshots, and inject scripts that can steal cryptocurrency.
The Hacker News
Typhon Reborn Stealer Malware Resurfaces with Advanced Evasion Techniques
Typhon Reborn V2, a new version of the information-stealing malware, has emerged with enhanced capabilities to evade detection.
Cyber Security News
Hackers Exploit Zimbra Vulnerability to Gain Access to Email Mailboxes
While these phishing emails contain hyperlinks to malicious URLs utilized by the threat actors to abuse the known vulnerabilities to execute JavaScript payloads.
Security Affairs
Microsoft fixed Azure AD bug that led to Bing.com results manipulation and account takeover
Microsoft addressed a misconfiguration flaw in the Azure Active Directory (AAD) identity and access management service. Microsoft has addressed a misconfiguration issue impacting the Azure Active Directory (AAD) identity and access management service that exposed multiple Microsoft applications, including the Bing management portal, to unauthorized access. The vulnerability was discovered by Wiz Research which determined […]
Cyber Security News
Hackers Exploiting WordPress Plugin with Over 11M Installs
Most popular WordPress plugins, Elementor Pro, used by over eleven million websites, is vulnerable to a high-severity vulnerability.
Security Affairs
Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. LockBit leaks data stolen from the South Korean National Tax Service Italy’s Data Protection Authority […]
Security Affairs
CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog
CISA has added nine flaws to its Known Exploited Vulnerabilities catalog, including bugs exploited by commercial spyware on mobile devices. U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added nine new vulnerabilities to its Known Exploited Vulnerabilities Catalog. Five of the issues added by CISA to its catalog are part of the exploits used by surveillance […]
The Hacker News
Microsoft Fixes New Azure AD Vulnerability Impacting Bing Search and Major Apps
Microsoft patches Azure Active Directory misconfiguration issue, which exposed high-impact apps to unauthorized access.
Infosecurity News
New Azure Flaw
The cross-site scripting flaw affects SFX version 9.1.1436.9590 or earlier and has a CVSS of 8.2
Cyber Security News
BingBang - A New Bing Vulnerability that Can be Exploited Without Executing a code
Azure Active Directory (AAD) has a new attack vector that affected Microsoft's Bing.com, according to Wiz Research. A widespread AAD misconfiguration.
The Hacker News
Winter Vivern APT Targets European Government Entities with Zimbra Vulnerability
Cyber espionage group Winter Vivern targets officials in Europe & US. The threat actor, known as TA473, exploits unpatched Zimbra vulnerabilities in g
Security Affairs
Super FabriXss vulnerability in Microsoft Azure SFX could lead to RCE
Researchers shared details about a flaw, dubbed Super FabriXss, in Azure Service Fabric Explorer (SFX) that could lead to unauthenticated remote code execution. Researchers from Orca Security shared details about a new vulnerability, dubbed Super FabriXss (CVE-2023-23383 – CVSS score: 8.2), in Azure. The experts demonstrated how to escalate a reflected XSS vulnerability in Azure Service […]
DarkReading
Microsoft Patches 'Dangerous' RCE Flaw in Azure Cloud Service
The vulnerability would have allowed an unauthenticated attacker to execute code on a container hosted on one of the platform's nodes.
Bleeping Computer
Bing search results hijacked via misconfigured Microsoft app
A misconfigured Microsoft application allowed anyone to log in and modify Bing.com search results in real-time, as well as inject XSS attacks to potentially breach the accounts of Office 365 users.
The Hacker News
Researchers Detail Severe "Super FabriXss" Vulnerability in Microsoft Azure SFX
New vulnerability in Azure Service Fabric Explorer dubbed "Super FabriXss" (CVE-2023-23383) can lead to unauthenticated remote code execution
CSO
APT group Winter Vivern exploits Zimbra webmail flaw to target government entities
Winter Vivern's campaign shows that threat actors can effectively take advantage of medium-severity vulnerabilities.
DarkReading
5 Lessons Learned From Hundreds of Penetration Tests
Developers must balance creativity with security frameworks to keep applications safe. Correlating business logic with security logic will pay in safety dividends.
Security Affairs
CloudBees flaws in Jenkins server can lead to code execution
CloudBees vulnerabilities in the Jenkins open-source automation server can be exploited to achieve code execution on targeted systems. Researchers from cloud security firm Aqua discovered a chain of two vulnerabilities in the Jenkins open-source automation server that could lead to code execution on targeted systems. Jenkins is the most popular open source automation server, it is […]
The Hacker News
Jenkins Security Alert: New Security Flaws Could Allow Code Execution Attacks
Severe security vulnerabilities in Jenkins open source automation server (CVE-2023-27898 and CVE-2023-27905) have been disclosed.
Security Affairs
BidenCash leaks 2.1M stolen credit/debit cards
The dark web carding site BidenCash recently leaked for free a collection of approximately 2 million stolen payment card numbers. An archive containing 2.1 million stolen payment card numbers is available for free to commemorate the anniversary of the dark web carding site BidenCash. The dump was released on February 28, it was published through […]
Infosecurity News
At Least 30% of
New study uses AI to analyze text of dark web forum users
The Hacker News
Application Security vs. API Security: What is the difference?
Don't confuse application security with API security! Learn the key differences in our latest article.