Vulnerability Management
Cybercriminals Leverage Critical PHP Vulnerability to Distribute Quasar RAT and XMRig Miners
Cybercriminals exploit a critical PHP vulnerability to spread Quasar RAT and XMRig miners, compromising systems and stealing resources.
WhatsApp Fixes Zero-Click Vulnerability Targeted by Paragon Spyware
WhatsApp addresses a critical zero-click vulnerability exploited by Paragon spyware, enhancing user security and privacy against sophisticated attacks.
CISA Alerts on Ransomware Attack Exploiting Fortinet Vulnerability
CISA warns of ransomware attacks exploiting Fortinet vulnerabilities, urging immediate action to secure systems and mitigate risks.
Eleven State Hacking Groups Exploit New Windows Zero-Day Vulnerability Since 2017
Eleven state-sponsored hacking groups have exploited a new Windows zero-day vulnerability since 2017, raising concerns over cybersecurity threats.
AI Code Editors Vulnerable: New ‘Rules File Backdoor’ Attack Allows Malicious Code Injection
Discover how the new ‘Rules File Backdoor’ attack exposes AI code editors to malicious code injection, highlighting critical security vulnerabilities.
Serious AMI MegaRAC Vulnerability Allows Server Hijacking and Bricking
Critical AMI MegaRAC vulnerability exposes servers to hijacking and bricking risks, urging immediate security measures to protect systems.
Microsoft Ignores 8-Year-Old Shortcut Exploit Used for Espionage
Microsoft overlooks an 8-year-old shortcut exploit, raising concerns as it remains a tool for espionage in cyberattacks.
Critical AMI BMC Vulnerability Allows Remote Server Takeover and Bricking
Critical AMI BMC vulnerability enables remote server takeover, risking complete system bricking. Immediate action required to mitigate threats.
Eleven State-Sponsored Groups Exploit Unpatched Windows Zero-Day Vulnerability Since 2017
Eleven state-sponsored groups have exploited an unpatched Windows zero-day vulnerability since 2017, posing significant security risks globally.
‘Dead simple’ hijacking hole in Apache Tomcat ‘now actively exploited in the wild’
“Discover the ‘dead simple’ hijacking hole in Apache Tomcat, now actively exploited in the wild, posing serious security risks to web applications.”
Apache Tomcat Vulnerability Exploited Within 30 Hours of Public Announcement
Apache Tomcat vulnerability exploited within 30 hours of its public announcement, highlighting urgent security risks for web applications.
OnDemand | Enhance Cyber Response with Continuous Security Testing Activation
Enhance your cyber response with OnDemand’s continuous security testing activation, ensuring proactive protection against evolving threats.
Monthly Certificate-Related Outages Affect 67% of Organizations
Discover how monthly certificate-related outages impact 67% of organizations, highlighting the need for better management and proactive solutions.
Microsoft: March Windows Updates Accidentally Remove Copilot
Microsoft’s March Windows updates inadvertently removed Copilot, causing user frustration and prompting discussions on software reliability and update management.
Urgent: Active Exploitation of Critical RCE Vulnerability in Apache Tomcat
Urgent alert: Critical RCE vulnerability in Apache Tomcat is actively being exploited. Immediate action required to secure your systems.
THN Weekly Update: Router Vulnerabilities, PyPI Security Breaches, New Ransomware Solutions, and More
Stay informed with THN Weekly Update: explore router vulnerabilities, PyPI security breaches, new ransomware solutions, and more essential cybersecurity news.
Microsoft Demands Video for Bug Reports: Researcher Delivers with Malicious Compliance
Microsoft requires video for bug reports; a researcher responds with malicious compliance, delivering a humorous yet insightful take on the demand.
ClickFix: A Simple Guide to Compromising Your Computer in Three Steps
Learn how to compromise your computer in three easy steps with ClickFix. A straightforward guide for understanding security vulnerabilities.
Ransomware Group Develops Tool for Automated VPN Brute-Force Attacks
Ransomware group creates a tool for automated VPN brute-force attacks, enhancing their capabilities to exploit vulnerabilities and breach networks.
Three Ivanti Vulnerabilities Added to CISA’s Catalogue
Three Ivanti vulnerabilities have been added to CISA’s catalogue, highlighting critical security risks that require immediate attention and remediation.
SuperBlack Ransomware Targets Fortinet Authentication Vulnerabilities
SuperBlack Ransomware exploits Fortinet authentication vulnerabilities, posing significant risks to cybersecurity and demanding urgent protective measures.
Ivanti Patch Treadmill: A Comprehensive Breach Overview
Explore the Ivanti Patch Treadmill, a detailed analysis of vulnerabilities, breaches, and strategies for effective patch management and cybersecurity.
Microsoft Acknowledges Issue with Classic Outlook Restore Button
Microsoft confirms a problem with the Classic Outlook restore button, affecting user experience. A fix is in progress to resolve the issue.
Juniper Fixes Vulnerability Exploited by Chinese Cyber Spies to Access Routers
Juniper addresses a critical vulnerability exploited by Chinese cyber spies, enhancing router security and protecting sensitive data from unauthorized access.