Tag: Cyber Alerts 2023

WordPress has issued version 6.4.2 to remedy a recently discovered remote code execution (RCE) vulnerability tied to a Property Oriented Programming (POP) chain flaw within WordPress core 6.4.

The Russia-linked threat actor known as COLDRIVERconti nues to escalate its cyber operations with a focus on credential theft and improving evasion tactics.

Threat actors can exploit a vulnerability in Amazon Web Services Security Token Service (AWS STS) to infiltrate cloud accounts

Researchers from Vrije Universiteit Amsterdam have developed a new side-channel attack called SLAM, targeting upcoming CPUs from Intel, AMD, and Arm.

Security researchers have identified a new threat to Linux systems, the Krasue remote access trojan (RAT), which has been targeting telecommunications

CISA, NSA, FBI, and global cybersecurity agencies advocate memory safe programming to combat vulnerabilities in "The Case for Memory Safe Roadmaps.

Atlassian has released critical software fixes addressing four vulnerabilities, including a high-severity deserialization flaw (CVE-2022-1471) in the SnakeYAML library.

More than 12 million users unwittingly downloaded SpyLoan Android apps from Google Play, which posed as legitimate financial services offering quick loans.

Qualcomm has unveiled details about three high-severity security flaws that faced limited, targeted exploitation in October 2023.

The Russia-linked influence operation known as Doppelganger has been actively targeting audiences in Ukraine, the U.S., and Germany.