Tag: Vulnerabilities

CISA has added a new vulnerability, CVE-2023-22527, to its Known Exploited Vulnerabilities Catalog, signaling evidence of active exploitation.

The Cybersecurity and Infrastructure Security Agency (CISA) has released six advisories focusing on Industrial Control Systems (ICS) as of January 23, 2024.

Splunk has recently addressed multiple vulnerabilities in its Splunk Enterprise software, with a notable focus on a high-severity flaw affecting Windows.

Kasseika ransomware has adopted sophisticated tactics to evade antivirus software during its attacks, exploiting the Martini driver.

Two malicious npm packages, warbeast2000 and kodiak2k, were found on the npm package registry, exploiting GitHub to store stolen Base64-encrypted SSH keys.

A critical security vulnerability has been disclosed in Fortra's GoAnywhere Managed File Transfer (MFT) software, exposing a significant security risk.

Google Chrome 121 update includes fixes for three high-severity bugs, with rewards totaling over $30,000 distributed to the reporting researchers.

Over 5,300 internet-exposed GitLab instances face a severe security threat due to a zero-click account takeover flaw, CVE-2023-7028.

Malicious actors are taking advantage of a critical security flaw in Atlassian Confluence Data Center and Confluence Server, which was recently disclosed.

Apple has released security updates for its operating systems to address a zero-day vulnerability actively exploited in the wild.