Actively Exploited Bugs
Critical Remote Code Execution Flaw in Progress LoadMaster: A 10/10 Severity Vulnerability
Gabby Lee
September 9, 2024
This vulnerability, tracked as CVE-2024-7591, allows attackers to remotely execute commands on vulnerable devices, posing a significant risk to organizations relying on these products.
Ransomware Gangs Exploiting VMware ESXi Authentication Bypass Vulnerability in Widespread Attacks
Mitchell Langley
July 30, 2024
Microsoft warns of active exploitation of CVE-2024-37085 flaw
Black Basta Ransomware May Have Exploited Windows Zero-Day Flaw
Gabby Lee
June 13, 2024
Analysis Suggests Black Basta Ransomware Group Used Unpatched Windows Vulnerability tracked as CVE-2024-26169 that impacts the Windows Error Reporting service.
RansomHub Ransomware Group Exploits ZeroLogon Vulnerability to Spread Malware
Gabby Lee
June 10, 2024
Security researchers have uncovered ransomware attacks conducted by the notorious RansomHub group leveraging the unpatched ZeroLogon vulnerability (CVE-2020-1472) to gain initial access to victim environments. ...
ArcaneDoor Hackers Exploit Cisco Zero-Days to Breach Government Networks
Gabby Lee
April 25, 2024
Cisco has warned of a sophisticated state-backed hacking group known as UAT4356 exploiting two zero-day vulnerabilities in Cisco firewall devices ...
Ivanti Issues Security Updates to Critical Flaws in Avalanche MDM Solution
Mitchell Langley
April 17, 2024
Ivanti, a leading provider of mobile device management (MDM) solutions, has recently released security updates to address a total of ...
Critical Flaw in D-Link NAS Devices Under Active Exploitation
Mitchell Langley
April 14, 2024
A Critical Flaw in D-Link NAS Devices is Under Active Exploitation in Over 92,000 Devices leaving them Vulnerable to Remote ...
CISA Issues Advisory to Devs to Address SQL Injection Vulnerabilities
Mitchell Langley
March 29, 2024
CISA and the FBI have advised technology manufacturing company executives to conduct thorough reviews of their software and take necessary ...
POC Exploit Released for Fortinet RCE Bug, Patch Now!
Mitchell Langley
March 25, 2024
A critical vulnerability in Fortinet’s FortiClient Enterprise Management Server (EMS) software has been discovered and is currently being actively exploited ...
Another Critical Fortinet RCE Flaw Exploited by Nation State Actors
Mitchell Langley
March 15, 2024
CVE-2024-48788, like many others, is another critical Fortinet RCE flaw will is an attractive target for nation-state backed actors. Fortinet ...
Trending
Daily Briefing Newsletter
Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.