Tag: information security
Feb 09, 2024NewsroomCyber Espionage / Threat Intelligence An unnamed Islamic non-profit organization in Saudi Arabia has been targeted as part of a stealthy cyber espionage campaign designed to drop a previously undocumented backdoor called Zardoor. Cisco Talos, which discovered the activity in May 2023, said the campaign has likely persisted since at least March 2021,…
Read MoreFeb 09, 2024NewsroomZero Day Vulnerability / Network Security Fortinet has disclosed a new critical security flaw in FortiOS SSL VPN that it said is likely being exploited in the wild. The vulnerability, CVE-2024-21762 (CVSS score: 9.6), allows for the execution of arbitrary code and commands. “A out-of-bounds write vulnerability [CWE-787] in FortiOS may allow a…
Read MoreFeb 09, 2024NewsroomVulnerability / Zero Day Ivanti has alerted customers of yet another high-severity security flaw in its Connect Secure, Policy Secure, and ZTA gateway devices that could allow attackers to bypass authentication. The issue, tracked as CVE-2024-22024, is rated 8.3 out of 10 on the CVSS scoring system. “An XML external entity or XXE…
Read MoreRecent Posts
- Cybercriminals Exploiting Docker API Servers for SRBMiner Crypto Mining Attacks
- CISA Releases One Industrial Control Systems Advisory | CISA
- Climb Channel Solutions Expands Into DACH Region With AI-Focused Growth
- Security Flaw in Styra’s OPA Exposes NTLM Hashes to Remote Attackers
- VMware fixes bad patch for critical vCenter Server RCE flaw