Tag: Cyber Alerts 2024

A critical SQL injection vulnerability, identified as CVE-2024-27298, posed a significant threat to parse-server, particularly when configured with PostgreSQL

Cisco's latest semiannual security advisory bundle discloses vulnerabilities demanding immediate attention. The advisory, released on February 29, 2024

A recent alert highlights significant vulnerabilities in MicroDicom DICOM Viewer. Released on February 29, 2024, the alert, coded as ICSMA-24-060-01

The Hugging Face Safetensors conversion service, a pivotal part of the popular collaboration platform, is under scrutiny as cybersecurity researchers

A new threat actor, Savvy Seahorse, has emerged, employing a highly sophisticated technique to power financial scams through the abuse of DNS CNAME records

Delta Electronics CNCSoft-B software versions 1.0.0.4 and earlier have been identified with a stack-based buffer overflow vulnerability.

CISA has launched a comprehensive resource guide specifically designed for university cybersecurity clinics and their clients.

The Lazarus Group, a North Korean threat actor, has been identified exploiting a critical flaw in the Windows AppLocker driver as a zero-day vulnerability.

Iran-linked threat actor UNC1549 has been identified as the perpetrator of cyberattacks targeting aerospace, aviation, and defense industries in the Middle East

China-linked cyber espionage clusters UNC5325 and UNC3886 have been identified as exploiting vulnerabilities in Ivanti Connect Secure VPN appliances.