Newswires

September 26, 2024

‘SloppyLemming’ APT Targets Government and Law Enforcement Agencies via Cloudflare
The Advanced Persistent Threat (APT) group 'SloppyLemming' is exploiting Cloudflare Worker cloud services and other tools to conduct espionage against government and law enforcement targets in and around the Indian subcontinent.
September 24, 2024

Critical Ivanti vTM Authentication Bypass Vulnerability Now Actively Exploited
A critical security vulnerability in Ivanti's Virtual Traffic Manager (vTM) software, tracked as CVE-2024-7593, is currently being exploited by threat actors.
September 23, 2024

Twelve Hacktivist Group Resurfaces, Targets Russian Entities
The hacktivist group Twelve, known for its activities since April 2023, has resurfaced, primarily targeting Russian entities.
September 23, 2024

China’s ‘Earth Baxia’ Cyber Espionage Group Targets APAC via GeoServer Exploitation
A cyber-espionage group linked to China, dubbed 'Earth Baxia', has been attacking government agencies in Taiwan, the Philippine and Japanese military, and energy companies in Vietnam.
September 20, 2024

Iranian APT UNC1860, Linked to MOIS, Plays Key Role in Cyber Intrusions in Middle East
An Iranian advanced persistent threat (APT) group, likely affiliated with the country's Ministry of Intelligence and Security (MOIS), is serving as an initial access facilitator, providing remote access to target networks.
September 20, 2024

Ivanti Cloud Services Appliance Vulnerability Added to CISA’s Known Exploited Vulnerabilities Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a new vulnerability to its Known Exploited Vulnerabilities (KEV) catalog.
September 19, 2024

Critical CSA Vulnerability Exploited in Attacks: Ivanti Issues Warning
Ivanti, a leading IT software company, has alerted its users about a new threat where attackers are exploiting a critical Cloud Services Appliance (CSA) vulnerability, targeting a select group of customers.
September 18, 2024

GitLab Issues Security Updates for Critical SAML Authentication Bypass Vulnerability
GitLab has introduced security patches to rectify a significant SAML authentication bypass flaw that is affecting self-managed deployments of GitLab Community Edition (CE) and Enterprise Edition (EE).
September 17, 2024

Zero-Click Vulnerabilities in macOS Calendar Risk iCloud Data Exposure
A chain of vulnerabilities, including critical, medium, and low-severity bugs, were discovered in macOS that could potentially allow attackers to bypass Apple's renowned security measures and gain access to victims' iCloud data.
September 17, 2024

Critical Remote Code Execution Vulnerability in VMware vCenter Server Patched by Broadcom
Broadcom has rectified a critical vulnerability in VMware vCenter Server, which could be exploited by attackers for remote code execution on servers that have not been patched, via a network packet.

Previous 202122 Next

See VULNERA In Action

Meet with a team member to discuss your use cases and see a demo.

Schedule Now

By Solution

By Feature

I Want To…

Learn More

VULNERA vs Vulnerability Scanners

Security Assessment Buyers Guide

Resources

Resources

Blog

Threat Intelligence

I Want To…

Learn More

Top 10 Vulnerability Management Questions Answered

About

About

Partners

I Want To…

Learn More

Simplifying Vulnerability Management

Newswires

See VULNERA In Action

Quick Menu

Features

Subscribe