Fortinet Alerts Users to Actively Exploited SSL VPN Vulnerability
Fortinet warns of actively exploited vulnerability. Disabling SSL VPN suggested as immediate countermeasure. Recent cyberattacks confirm the vulnerability's active exploitation.
Strategic Infiltration: PRC Cyber Group Targets US Critical Infrastructure
Volt Typhoon infiltrates U.S. infrastructure. Group maintained access for over five years. CISA issues detailed threat advisory.
Decoding ‘The Bear and the Shell’: Campaign Targets Russian Government Critics
Cluster25 discovers a Russian-targeting phishing campaign. Attackers deploy NASA-themed emails to install HTTP-Shell. Evidence suggests Russian state-sponsored cyber activity.
Linux Kernel Vulnerability CVE-2023-6200 Enables Code Execution via IPv6
Linux kernel CVE-2023-6200 allows remote code execution. Exploitation possible via ICMPv6 router advertisement packets. Update to kernel version 6.7-rc7 to…
Exploring the Critical Remote Code Execution Vulnerability in Jenkins
Jenkins is a prime target for cyber threats. Researchers identified critical vulnerability CVE-2024-23897. Flaw allows unauthorized reading of files and…
Google Rolls Out Security Update for Chrome Addressing Multiple Vulnerabilities
Google updates Chrome to patch 17 security issues. High-severity vulnerabilities include heap corruption risks. Users urged to install latest Chrome…
Security Experts Highlight Phishing as Prime Cyber Threat
Phishing is the predominant threat for organizations. Experts propose multi-faceted strategies for threat mitigation. Resource shortages challenge the implementation of…
Escalating Cyber Threats in 2023: Businesses Struggle to Respond
Cyber attacks more than doubled in 2023. Businesses overlook growing cybersecurity threats. Education sector highly vulnerable due to legacy systems.
New Variant of WIREFIRE Web Shell Targets Ivanti VPN Appliances
QuoIntelligence reveals a new WIREFIRE variant. Variant evades detection, retains core functions. New YARA rule developed for broader detection.
Widespread Exploitation of Ivanti Connect Secure VPN Vulnerabilities
Ivanti VPN's critical flaws exploited globally. No official patch; agencies must act swiftly. Research reveals multi-actor attack campaign.
