Vulnerability Archives

Clipboard Hijacking and User Password Leaks May Result from a New Linux Bug

szabiiii / March 29, 2024

Information has surfaced regarding a vulnerability that affects the “wall” command of the util-linux package. On specific Linux distributions, a […]

Hardware Security, Vulnerability

On AMD CPUs, a novel ZenHammer attack circumvents Rowhammer resistance.

szabiiii / March 28, 2024

Cybersecurity researchers affiliated with ETH Zurich have created a novel iteration of the RowHammer DRAM (dynamic random-access memory) assault that

Cybercrime, Vulnerability

A novel phishing attack conceals a keylogger within a bank payment notification.

szabiiii / March 27, 2024

We’ve identified a recent phishing campaign that uses unique loader malware to spread Agent Tesla, an information stealer and keylogger.

Data Security, Vulnerability

A critical, unpatched vulnerability in the Ray AI platform was exploited to mine cryptocurrencies.

szabiiii / March 27, 2024

Cybersecurity researchers are issuing a warning that malicious actors are actively exploiting an unpatched and “disputed” vulnerability in the Anyscale

Ransomware, Vulnerability

BianLian threat actors use JetBrains TeamCity flaws in ransomware attacks.

szabiiii / March 11, 2024

The threat actors behind the BianLian ransomware have been discovered using security holes in JetBrains TeamCity software to carry out

Network Security, Vulnerability

A proof-of-concept exploit has been released for Progress Software OpenEdge Vulnerability

szabiiii / March 11, 2024

Technical details and a proof-of-concept (PoC) attack have been made public for a newly reported severe security weakness in Progress

A tense and serious scene of cybersecurity experts monitoring a situation room, with large screens displaying the warning about the actively exploited JetBrains TeamCity vulnerability. The team is focused on their workstations, inputting data and analyzing the threat while discussing potential countermeasures.

Threat Intelligence, Vulnerability

CISA warns of an actively exploited JetBrains TeamCity vulnerability.

szabiiii / March 8, 2024

On Thursday, the US Cybersecurity and Infrastructure Security Agency (CISA) added a severe security issue affecting JetBrains TeamCity On-Premises software

Vulnerability, Web Security

Hacked WordPress sites use visitors’ browsers for distributed brute-force attacks.

szabiiii / March 7, 2024

According to Sucuri’s latest research, threat actors are using malicious JavaScript injections to launch brute-force assaults against WordPress sites. The

A chilling image depicts a malicious Python-based Snake Info Stealer, spreading through Facebook messages. The Snake, represented as a sinister, slithering creature, is seen infiltrating a victim's computer. The background is a dark, cyber-infested landscape with glowing code and ghostly figures. The overall atmosphere is tense and eerie, with a sense of impending danger and cyber threats.

Information Stealer, Vulnerability

New Python-Based Snake Info Stealer Spreading Through Facebook Messages

szabiiii / March 7, 2024

Threat actors are using Facebook messaging to access Snake, a Python-based information stealer that is intended to get sensitive information,

Vulnerability, Zero Day

Apple Releases Critical Updates for Actively Exploited Zero-Day Flaws in an Urgent Manner

szabiiii / March 6, 2024

In order to fix a number of security issues, including two that it claimed had been actively exploited in the