Major Vulnerabilities Patched in SonicWall, Palo Alto Expedition, and Aviatrix Controllers

New Banshee Stealer Variant Bypasses Antivirus with Apple’s XProtect-Inspired Encryption

Product Review: How Reco Discovers Shadow AI in SaaS

Webinar: Learn How to Stop Encrypted Attacks Before They Cost You Millions

 MirrorFace Leverages ANEL and NOOPDOOR in Multi-Year Cyberattacks on Japan

Threat actors are attempting to take advantage of a recently disclosed security flaw impacting GFI KerioControl firewalls that, if successfully exploited, could allow malicious actors to achieve remote code execution (RCE).
The vulnerability in question, CVE-2024-52875, refers to a carriage return line feed (CRLF) injection attack, paving the way for HTTP response splitting, which could then

Headline

Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection

The Hacker News: Latest News