Actively Exploited Bugs
Hackers Abuse WordPress Plugin Flaw (CVE-2023-6000) to Infect 3,300 Websites
Mitchell Langley
March 13, 2024
Hackers are compromising WordPress sites by taking advantage of a WordPress plugin flaw found in outdated versions of the Popup ...
Magnet Goblin Hackers Exploit 1-day Vulnerabilities to Deploy NerbianRAT Linux Malware
Gabby Lee
March 12, 2024
The Magnet Goblin hackers, driven by financial motives, use 1-day vulnerabilities to breach servers and install custom Linux malware NerbianRAT ...
Joomla Fixes Critical XSS Vulnerabilities in Joomla CMS
Gabby Lee
February 21, 2024
The open-source project responsible for maintaining Joomla, a widely used content management system, has released a patch to address Critical ...
Critical RCE bugs Found in SolarWinds Access Rights Manager (ARM)
Mitchell Langley
February 19, 2024
SolarWinds has successfully addressed multiple critical RCE bugs that were present in its Access Rights Manager (ARM) solution. Access Rights ...
Microsoft Critical Exchange Bug Exploited as ‘zero-day’
Mitchell Langley
February 16, 2024
Microsoft has issued an updated security advisory, warning about a critical vulnerability in Exchange Server. The Microsoft critical Exchange bug ...
Roundcube Email Server Bug Actively Exploited in Attacks: CISA Issues Advisory
Gabby Lee
February 13, 2024
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding a recently detected vulnerability in Roundcube email servers. ...
New Fortinet RCE flaw in SSL VPN Exploited in the Wild
Mitchell Langley
February 12, 2024
Fortinet has issued a warning regarding a serious vulnerability in FortiOS SSL VPN. This Fortinet RCE flaw, identified as CVE-2024-21762 ...
CISA Confirms New Fortinet RCE Bug Being Actively Exploited
Gabby Lee
February 12, 2024
Today, the Cybersecurity and Infrastructure Security Agency (CISA) has confirmed the active exploitation of a critical remote code execution (RCE) ...
Ivanti Reveals Second Connect Secure zero-day Exploit, Urges Immediate Patching
Gabby Lee
February 2, 2024
Today, Ivanti issued a warning regarding two additional Connect Secure zero-day exploits that are affecting Connect Secure, Policy Secure, and ...
Linux glibc Flaw Lets Attackers Exploit Root Access on Major Linux Distros
Gabby Lee
January 31, 2024
A newly discovered vulnerability in the GNU C Library (glibc) enables attackers to gain root access on default configurations of ...
Trending
Daily Briefing Newsletter
Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.