Uncategorized

Uncategorized post – later to be categorized.

Veeam Issues Patch for Critical RCE Vulnerability in Service Provider Console The Hacker [email protected] (The Hacker News)
December 3, 2024

Veeam has released security updates to address a critical flaw impacting Service Provider Console (VSPC) that could pave the way for remote code execution on susceptible instances. The vulnerability, tracked as …

Read More
No Comment

In The News  / Uncategorized


Critical SailPoint IdentityIQ Vulnerability Exposes Files to Unauthorized Access The Hacker [email protected] (The Hacker News)
December 3, 2024

A critical security vulnerability has been disclosed in SailPoint's IdentityIQ identity and access management (IAM) software that allows unauthorized access to content stored within the application directory. The flaw, tracked as …

Read More
No Comment

Hackers Use Corrupted ZIPs and Office Docs to Evade Antivirus and Email Defenses The Hacker [email protected] (The Hacker News)
December 3, 2024

Cybersecurity researchers have called attention to a novel phishing campaign that leverages corrupted Microsoft Office documents and ZIP archives as a way to bypass email defenses. "The ongoing attack evades #antivirus …

Read More
No Comment

Why Phishers Love New TLDs Like .shop, .top and .xyz Krebs on SecurityBrianKrebs
December 3, 2024

Phishing attacks increased nearly 40 percent in the year ending August 2024, with much of that growth concentrated at a small number of new generic top-level domains (gTLDs) -- such …

Read More
No Comment

Cisco Warns of Exploitation of Decade-Old ASA WebVPN Vulnerability The Hacker [email protected] (The Hacker News)
December 3, 2024

Cisco on Monday updated an advisory to warn customers of active exploitation of a decade-old security flaw impacting its Adaptive Security Appliance (ASA). The vulnerability, tracked as CVE-2014-2120 (CVSS score: 4.3), …

Read More
No Comment

NachoVPN Tool Exploits Flaws in Popular VPN Clients for System Compromise The Hacker [email protected] (The Hacker News)
December 3, 2024

Cybersecurity researchers have disclosed a set of flaws impacting Palo Alto Networks and SonicWall virtual private network (VPN) clients that could be potentially exploited to gain remote code execution on …

Read More
No Comment

North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks The Hacker [email protected] (The Hacker News)
December 3, 2024

The North Korea-aligned threat actor known as Kimsuky has been linked to a series of phishing attacks that involve sending email messages that originate from Russian sender addresses to ultimately …

Read More
No Comment

Horns&Hooves Campaign Delivers RATs via Fake Emails and JavaScript Payloads The Hacker [email protected] (The Hacker News)
December 2, 2024

A newly discovered malware campaign has been found to target private users, retailers, and service businesses mainly located in Russia to deliver NetSupport RAT and BurnsRAT. The campaign, dubbed Horns&Hooves by …

Read More
No Comment

SmokeLoader Malware Resurfaces, Targeting Manufacturing and IT in Taiwan The Hacker [email protected] (The Hacker News)
December 2, 2024

Taiwanese entities in manufacturing, healthcare, and information technology sectors have become the target of a new campaign distributing the SmokeLoader malware. "SmokeLoader is well-known for its versatility and advanced evasion techniques, …

Read More
No Comment

A Guide to Securing AI App Development: Join This Cybersecurity Webinar The Hacker [email protected] (The Hacker News)
December 2, 2024

Artificial Intelligence (AI) is no longer a far-off dream—it’s here, changing the way we live. From ordering coffee to diagnosing diseases, it’s everywhere. But while you’re creating the next big …

Read More
No Comment