Exploit in Palo Alto’s PAN-OS actively abused by malicious hacker group
A critical vulnerability in Palo Alto Networks' PAN-OS firewall software is actively exploited and used for attacks. The vulnerability was discovered as early as April 10, but tens of thousands of active firewalls were eventually found to be vulnerable. Updating to the latest version is the urgent ... Read more
Number of exploited zero-days up more than 50%
Figures from Google show that last year there were 97 actively exploited zero-day vulnerabilities. In 2022, the number was still 62 vulnerabilities.
With this, the upward trend has returned. A year ago, the figures still showed a positive trend downward. According to Google data, the year 2021 m... Read more
VMware zero-day exploited since at least late 2021
A Chinese hacker group has been exploiting a zero-day in the vCenter Server since at least late 2021. The hackers managed to deploy backdoors on ESXi hosts through the vulnerability and leak data from organisations in critical sectors.
Mandiant revealed that the perpetrator behind the cyber camp... Read more
Google signals actively exploited zero-day in Chrome browser
Google is warning Chrome users about an actively exploited zero-day vulnerability. A security update is available.
The tech giant discovered the CVE-2023-6345 vulnerability itself and marks it as very important. The bug affects the so-called Skia graphics engine. The Chrome browser uses this par... Read more
Barracuda zero-day exploited for espionage in Belgium, Germany and Poland
The Chinese hackers who broke into Barracuda's Email Security Gateway (ESG) devices appeared to be primarily interested in devices belonging to politically important targets. The hackers spared no expense to maintain a presence in these devices after a patch was released. Barracuda eventually decid... Read more
Microsoft patches zero-days but Visual Studio Code still leaks logins
In the latest Patch Tuesday, Microsoft addressed 87 vulnerabilities. Two vulnerabilities were exploited by hackers, and six "critical" vulnerabilities allowed hackers to run code remotely. Researchers also reported a flaw in Visual Studio Code that leaks passwords, but Microsoft did not see the nee... Read more
Zeroday in Ivanti software exposes mainly Western countries
Servers containing Ivanti's Endpoint Manager Mobile (EPMM) solution and therefore two vulnerabilities are mainly in possession of Western companies and governments. Patches are available, but cybersecurity specialists fear hackers already breached most networks. The story started when Norway discov... Read more
Hackers have been exploiting zero-day in Ivanti software since April
The vulnerability in Ivanti software has been exploited since at least April. That is what cyber security services from Norway and the US know.
CISA from the U.S. and the Norwegian National Cyber Security Centre (NCSC-NO) are jointly releasing an advisory report, looking deeper into the zero-da... Read more
Ivanti patches zero-day that affected Norwegian government
Ivanti has released a patch for the CVE-2023-35078 vulnerability in its Endpoint Manager Mobile (EPMM) software.
Labeled as highly critical, the vulnerability in Ivanti's EPMM solution, also known by its former name MobileIron Core, allows hackers to access personal information on affected devic... Read more
MOVEit attack hits 200+ organisations, but its impact is often unclear
In early June, U.S. security watchdog CISA urged that a zero-day vulnerability in MOVEit be patched as soon as possible. The Progress Software product is used by numerous companies worldwide to send often sensitive files in an encrypted manner. Behind the attacks is the Russia-linked CL0P ransomwar... Read more