exploitation

Cacti, Realtek, and IBM Aspera Faspex Vulnerabilities Under Active Exploitation

Apr 1, 2023 by iHash Leave a Comment

Apr 01, 2023Ravie LakshmananCyber Attack / Vulnerability Critical security flaws in Cacti, Realtek, and IBM Aspera Faspex are being exploited by various threat actors in hacks targeting unpatched systems. This entails the abuse of CVE-2022-46169 (CVSS score: 9.8) and CVE-2021-35394 (CVSS score: 9.8) to deliver MooBot and ShellBot (aka PerlBot), Fortinet FortiGuard Labs said … [Read more...] about Cacti, Realtek, and IBM Aspera Faspex Vulnerabilities Under Active Exploitation

CISA Issues Warning on Active Exploitation of ZK Java Web Framework Vulnerability

Feb 28, 2023 by iHash Leave a Comment

Feb 28, 2023Ravie LakshmananSoftware Security / Cyber Attack The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity flaw affecting the ZK Framework to its Known Exploited Vulnerabilities (KEV) catalog based on evidence of active exploitation. Tracked as CVE-2022-36537 (CVSS score: 7.5), the issue impacts ZK Framework versions 9.6.1, … [Read more...] about CISA Issues Warning on Active Exploitation of ZK Java Web Framework Vulnerability

CISA Warns of Active exploitation of JasperReports Vulnerabilities

Dec 30, 2022 by iHash Leave a Comment

Dec 30, 2022Ravie LakshmananPatch Management The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two-years-old security flaws impacting TIBCO Software's JasperReports product to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The flaws, tracked as CVE-2018-5430 (CVSS score: 7.7) and CVE-2018-18809 (CVSS score: … [Read more...] about CISA Warns of Active exploitation of JasperReports Vulnerabilities

Microsoft Netlogon exploitation continues to rise

Sep 29, 2020 by iHash Leave a Comment

Cisco Blogs / Security / Threat Research / Microsoft Netlogon exploitation continues to rise Cisco Talos is tracking a spike in exploitation attempts against the Microsoft vulnerability CVE-2020-1472, an elevation of privilege bug in Netlogon, outlined in the August Microsoft Patch Tuesday report. The vulnerability stems from a flaw in a cryptographic … [Read more...] about Microsoft Netlogon exploitation continues to rise

Oracle WebLogic Exploit-fest Continues with GandCrab Ransomware, XMRig

May 6, 2019 by iHash Leave a Comment

Snowballing attacks using a recently patched critical bug show no sign of abating. Source link … [Read more...] about Oracle WebLogic Exploit-fest Continues with GandCrab Ransomware, XMRig

« Previous Page

JBL Flip 6 Portable Bluetooth Speaker (Open Box) for $74

Navee V25 300W Foldable e-Scooter for $299

Smart Tracker Includes Key Ring – Works with Apple Find My App (2-Pack) for $34

Harmony Premium Plan Lifetime Subscription for $99

Lenovo 11.6" 100e Chromebook 2nd Gen (2019) MediaTek MT8173C 4GB RAM 16GB eMMC (Refurbished) for $54

Cacti, Realtek, and IBM Aspera Faspex Vulnerabilities Under Active Exploitation

CISA Issues Warning on Active Exploitation of ZK Java Web Framework Vulnerability

CISA Warns of Active exploitation of JasperReports Vulnerabilities

Microsoft Netlogon exploitation continues to rise

Oracle WebLogic Exploit-fest Continues with GandCrab Ransomware, XMRig