Tag: Active
-
Active adversary report: Ransomware hit a ceiling, but security teams at risk for more pain
despite a pause in the rise of ransomware, organizations are failing to take the steps necessary to adequately defend themselves against …
-
Active Nitrogen campaign delivered via malicious ads for PuTTY, FileZilla
In the past couple of weeks, we have observed an ongoing campaign targeting system administrators with fraudulent ads for popular system …
-
Active adversary dwell time: The good (and bad) news
In its first half of 2023 analysis, the Sophos X-Ops Incident Response Team found good and bad) news regarding active adversary dwell time. …
-
CISA Warns Of Active Exploitation Of Flaws In Fortinet, Ivanti, & Nice Linear
A recent security alert warns of three critical vulnerabilities actively exploited in the wild, of which the first is CVE-2023-48788, an …
-
PetSmart warns of Active Password Cracking Attacks
PetSmart, Inc. is a renowned retail chain operating in the United States, Canada, and Puerto …
-
CISA: Active exploitation of Microsoft Streaming Service bug should prompt urgent patching
BleepingComputer reports that immediate patching of the high-severity Microsoft Streaming Service flaw, tracked as CVE-2023-29360, has been …
-
Five Eyes Agencies Warn of Active Exploitation of Ivanti Gateway Vulnerabilities
The Five Eyes (FVEY) intelligence alliance has issued a new cybersecurity advisory warning of cyber threat actors exploiting known security …
-
CVE-2024-25126 (rack): Denial of Service Vulnerability in Rack Content-Type Parsing
ADVISORIES CVE-2024-25126 (NVD) Vendor Advisory GEM rack UNAFFECTED VERSIONS < 0.4 PATCHED VERSIONS ~> 2.2.8, >= 2.2.8.1 >= 3.0.9.1 …
-
WordPress Bricks Theme Under Active Attack: Critical Flaw Impacts 25,000+ Sites
A critical security flaw in the Bricks theme for WordPress is being actively exploited by threat actors to run arbitrary PHP code on …
-
Critical Exchange Server Flaw (CVE-2024-21410) Under Active Exploitation
Microsoft on Wednesday acknowledged that a newly disclosed critical security flaw in Exchange Server has been actively exploited in the …
-
Alert: CISA Warns of Active ‘Roundcube’ Email Attacks – Patch Now
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a medium-severity security flaw impacting Roundcube email …
-
Fortinet Warns of Critical FortiOS SSL VPN Flaw Likely Under Active Exploitation
Fortinet has disclosed a new critical security flaw in FortiOS SSL VPN that it said is likely being exploited in the wild. The …
●●●