Security
Headlines
HeadlinesLatestCVEs

Tag

#intel

Threat Source newsletter (Aug. 3, 2023) — Previewing Talos at BlackHat 2023

Cisco Talos will be well-represented at BlackHat and DEF CON over the course of the next few weeks with a slew of presentations, demos and appearances to speak to the security community.

TALOS
#vulnerability#ios#mac#microsoft#cisco#ddos#dos#intel
Researchers Leverage ChatGPT to Expose Notorious macOS Malware

By Habiba Rashid Dubbed HVNC, the malware is being sold on a Russian hacker and cybercrime forum for $60,000. This is a post from HackRead.com Read the original post: Researchers Leverage ChatGPT to Expose Notorious macOS Malware

CVE-2023-38948: jizhi CMS 1.9.5 has a Arbitrary File Download RCE vulnerability via /A/c/PluginsController.php · Issue #I7LI4E · Pwn师傅/Pwn - Gitee.com

An arbitrary file download vulnerability in the /c/PluginsController.php component of jizhi CMS 1.9.5 allows attackers to execute arbitrary code via downloading a crafted plugin.

CVE-2023-37559: VDE-2023-019 | CERT@VDE

After successful authentication as a user in multiple Codesys products in multiple versions, specific crafted network communication requests with inconsistent content can cause the CmpAppForce component to read internally from an invalid address, potentially leading to a denial-of-service condition. This vulnerability is different to CVE-2023-37558

Half-Year in Review: Recapping the top threats and security trends so far in 2023

We've seen threat actors utilize every chance they get to steal sensitive data, to be used in future attacks and/or to manipulate victims into paying up before their data ends up on the dark web.

Russian Midnight Blizzard Hackers Hit MS Teams in Precision Attack

By Waqas The group of Russian hackers involved in this attack is Midnight Blizzard (aka NOBELIUM). This is a post from HackRead.com Read the original post: Russian Midnight Blizzard Hackers Hit MS Teams in Precision Attack

CVE-2023-37545: VDE-2023-019 | CERT@VDE

In multiple Codesys products in multiple versions, after successful authentication as a user, specific crafted network communication requests with inconsistent content can cause the CmpApp component to read internally from an invalid address, potentially leading to a denial-of-service condition. This vulnerability is different to CVE-2023-37546, CVE-2023-37547, CVE-2023-37548, CVE-2023-37549, CVE-2023-37550

Global ransomware attacks at an all-time high, shows latest 2023 State of Ransomware report

Categories: Threat Intelligence Ransomware gangs are also starting to focus on exploiting zero-days for initial access. (Read more...) The post Global ransomware attacks at an all-time high, shows latest 2023 State of Ransomware report appeared first on Malwarebytes Labs.

Care Bears and Open Campus Launch Educational Games on Climate Change

By Owais Sultan London, England, August 2, 2023 – Open Campus, a leading educational technology protocol, has announced an exciting new… This is a post from HackRead.com Read the original post: Care Bears and Open Campus Launch Educational Games on Climate Change

SSH Remains Most Targeted Service in Cado’s Cloud Threat Report

By Waqas Cado Security Labs' 2023 Cloud Threat Findings Report dives deep into the world of cybercrime, cyberattacks, and vulnerabilities. This is a post from HackRead.com Read the original post: SSH Remains Most Targeted Service in Cado’s Cloud Threat Report