The Hacker News37m
Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks
Patch critical SimpleHelp vulnerabilities, including CVE-2024-57727 and CVE-2024-57728, to prevent admin credential theft and ...
The Hacker News1h
3 Actively Exploited Zero-Day Flaws Patched in Microsoft's Latest Security Update
All the three Microsoft Access issues, on the other hand, have been credited to Unpatched.ai, an AI-guided vulnerability ...
The Hacker News14h
Zero-Day Vulnerability Suspected in Attacks on Fortinet Firewalls with Exposed Interfaces
Fortinet firewalls running firmware versions 7.0.14-7.0.16 targeted by attackers using zero-day vulnerabilities.
The Hacker News20h
Russian-Linked Hackers Target Kazakhstan in Espionage Campaign with HATVIBE Malware
Sekoia said the HATVIBE attack sequence demonstrates targeting and technical overlaps with APT28-related Zebrocy campaigns, ...
The Hacker News13h
Google OAuth Vulnerability Exposes Millions via Failed Startup Domains
The San Francisco-based company said the issue has the potential to put millions of American users' data at risk simply by ...
The Hacker News17h
Hackers Exploit Aviatrix Controller Vulnerability to Deploy Backdoors and Crypto Miners
CVE-2024-50603 in Aviatrix Controller enables remote code execution, cryptomining, and backdoor attacks. Patch now.
The Hacker News20h
4 Reasons Your SaaS Attack Surface Can No Longer be Ignored
Surprises are never pleasant in the IT security world. Gaining visibility into your SaaS attack surface makes it possible to ...