Collaborate Disseminate
CVE-2023-47246 zero-day vulnerability in SysAid IT service management software has been exploited by Cl0p ransomware affiliates.
The post SysAid Zero-Day Vulnerability Exploited by Ransomware Group appeared first on SecurityWeek.
Continue reading SysAid Zero-Day Vulnerability Exploited by Ransomware Group
Glibc vulnerability affecting major Linux distributions and tracked as Looney Tunables exploited in cloud attacks by Kinsing group.
The post ‘Looney Tunables’ Glibc Vulnerability Exploited in Cloud Attacks appeared first on SecurityWeek.
Continue reading ‘Looney Tunables’ Glibc Vulnerability Exploited in Cloud Attacks
Threat actors have started exploiting a recent critical vulnerability in Confluence Data Center and Confluence Server.
The post Exploitation of Critical Confluence Vulnerability Begins appeared first on SecurityWeek.
Continue reading Exploitation of Critical Confluence Vulnerability Begins
The recently patched Apache ActiveMQ vulnerability tracked as CVE-2023-46604 has been exploited as a zero-day since at least October 10.
The post Apache ActiveMQ Vulnerability Exploited as Zero-Day appeared first on SecurityWeek.
Continue reading Apache ActiveMQ Vulnerability Exploited as Zero-Day
Multiple threat actors are exploiting CVE-2023-4966, aka Citrix Bleed, a critical vulnerability in NetScaler ADC and Gateway.
The post Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway appeared first on SecurityWeek.
Continue reading Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway
Russian APT Winter Vivern exploits a zero-day in the Roundcube webmail server in attacks targeting European governments.
The post Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day appeared first on SecurityWeek.
Continue reading Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day
The number of Cisco devices hacked via the CVE-2023-20198 zero-day has reached 40,000, including many in the US.
The post Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000 appeared first on SecurityWeek.
Continue reading Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000
Mandiant says the recently patched Citrix NetScaler vulnerability CVE-2023-4966 had been exploited as zero-day since August.
The post Recent NetScaler Vulnerability Exploited as Zero-Day Since August appeared first on SecurityWeek.
Continue reading Recent NetScaler Vulnerability Exploited as Zero-Day Since August
CISA, FBI, and MS-ISAC warn of potential widespread exploitation of CVE-2023-22515, a critical vulnerability in Atlassian Confluence.
The post US Gov Expects Widespread Exploitation of Atlassian Confluence Vulnerability appeared first on SecurityWeek.
Continue reading US Gov Expects Widespread Exploitation of Atlassian Confluence Vulnerability
Cisco is warning customers that a new IOS XE zero-day vulnerability tracked as CVE-2023-20198 is being exploited to hack devices.
The post Cisco Devices Hacked via IOS XE Zero-Day Vulnerability appeared first on SecurityWeek.
Continue reading Cisco Devices Hacked via IOS XE Zero-Day Vulnerability