Tag: vulnerability

Here you will find all the articles with the tag: vulnerability.

Nearly 4,000 organizations still vulnerable to Log4Shell

Nearly 4,000 organizations still vulnerable to Log4Shell

About just over a third of enterprise applications that rely on Log4j libraries are still using a version vulnerable to Log4Shell. That's according to figures from Veracode. Many companies still have not addressed the Log4j vulnerability in their applications, which has been known for two years,... Read more

date4 months ago
VMware Cloud Director was vulnerable for two weeks without a patch

VMware Cloud Director was vulnerable for two weeks without a patch

VMware Cloud Director Appliance version 10.5 has been vulnerable to attacks for two weeks because of a critical authentication leak. VMware has finally released a patch and workaround. Two weeks ago, the critical vulnerability CVE-2023-34060 was discovered in the VMware Cloud Director Appliance,... Read more

date4 months ago
Google signals actively exploited zero-day in Chrome browser

Google signals actively exploited zero-day in Chrome browser

Google is warning Chrome users about an actively exploited zero-day vulnerability. A security update is available. The tech giant discovered the CVE-2023-6345 vulnerability itself and marks it as very important. The bug affects the so-called Skia graphics engine. The Chrome browser uses this par... Read more

date4 months ago
Citrix Bleed vulnerability exploited before it was even discovered

Citrix Bleed vulnerability exploited before it was even discovered

The scope of the Citrix Bleed vulnerability is likely larger than thought. New insight suggests that the vulnerability was exploited well before it was discovered and fixed in October this year. This is what CISA indicates to Bloomberg. According to Bloomberg, a representative of U.S. cybersecur... Read more

date4 months ago
Bug in WordPress plugin exposes 600,000 vulnerable websites

Bug in WordPress plugin exposes 600,000 vulnerable websites

A plugin to make WordPress sites load faster is vulnerable to an SQL injection attack. WP Fastest Cache is deployed by more than a million websites. The majority of these sites (600,000) are still running a vulnerable version. It's easy to see why WP Fastest Cache is so popular: its creators pro... Read more

date5 months ago
“Citrix Bleed”: massive exploitation of NetScaler vulnerability

“Citrix Bleed”: massive exploitation of NetScaler vulnerability

The CVE-2023-4966 vulnerability for Citrix NetScaler ADC and NetScaler Gateway is currently being massively exploited. Meanwhile, this cyber threat is known as "Citrix Bleed". The exploits are taking place despite there being a patch released for it, several security specialists conclude. In an ... Read more

date5 months ago
How the MOVEit vulnerability has been making victims since May 2023

How the MOVEit vulnerability has been making victims since May 2023

CCleaner confirms that hackers have captured customers' personal data. The theft occurred in May when the vulnerability in MOVEit was allegedly first exploited. This adds a new name to the ever-lengthening victim list. Cybersecurity experts identified the first exploits of the MOVEit vulnerabil... Read more

date5 months ago
Okta hack shows how vulnerable digital authentication is

Okta hack shows how vulnerable digital authentication is

In recent days, it has become clear how a hack on Okta has major implications for it's customers. The stolen data allows cybercriminals to log into customers' systems. In addition, it shows once again how vulnerable our digital identities are. Earlier this week, Okta reported that data was stole... Read more

date5 months ago
1 2 3 4 5 18