Collaborate Disseminate
A critical security flaw in Dell Power Manager has been discovered that could allow attackers to compromise your systems and execute arbitrary code. Continue reading Dell Urges Immediate Update to Fix Critical Power Manager Vulnerability
Attackers are exploiting a vulnerability (CVE-2024-50623) in file transfer software by Cleo – LexiCo, VLTransfer, and Harmony – to gain access to organizations’ systems, Huntress researchers warned on Monday. “We’ve discovered a… Continue reading Attackers actively exploiting flaw(s) in Cleo file transfer software (CVE-2024-50623)
Protect your systems with automated patching and server hardening strategies to defend against vulnerabilities like the NTLM zero-day.… Continue reading Critical Windows Zero-Day Alert: No Patch Available Yet for Users
A security issue that could have allowed attackers to serve malicious firmware images to users has been fixed by OpenWrt Project, the organization that helms the development of the popular Linux distribution for embedded devices. About OpenWrt OpenWrt … Continue reading Update your OpenWrt router! Security issue made supply chain attack possible
SUMMARY Veeam, a leading provider of backup, recovery, and data management solutions, has issued urgent security updates to… Continue reading Critical Veeam Vulnerabilities Allow Remote Code Execution – Update Now
INC Ransom, a Russian-leanguage ransomware group has claimed responsibility for the ransomware attack on two NHS, hospitals. Continue reading NHS Ransomware Attack: Russian INC Ransom Gang Steals Patient Data
The vulnerability was first identified in 2014. Continue reading Cisco Urges Immediate Patch for Decade-Old WebVPN Vulnerability
Researchers have published a proof-of-concept (PoC) exploit for CVE-2024-8785, a critical remote code execution vulnerability affecting Progress WhatsUp Gold, a popular network monitoring solution for enterprises. CVE-2024-8785 and the PoC exploit CVE-… Continue reading PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785)
Veeam has fixed two vulnerabilities in Veeam Service Provider Console (VSPC), one of which (CVE-2024-42448) may allow remote attackers to achieve code exection on the VSPC server machine. The vulnerabilities Veeam Service Provider Console is a cloud-en… Continue reading Veeam plugs serious holes in Service Provider Console (CVE-2024-42448, CVE-2024-42449)
A massive data leak linked to the MOVEit vulnerability has exposed millions of employee records from major companies. Learn about the impact of this leak, the role of the “data vigilante” Nam3L3ss. Continue reading Data Vigilante Leaks 772K Employee Records from Top Firms and 12.3M-Row Database