Search cyberveille.decio.ch

Found 9 bookmarks

Custom sorting

PoC exploit released for RCE zero-day in D-Link EXO AX4800 routers

The D-Link EXO AX4800 (DIR-X4860) router is vulnerable to remote unauthenticated command execution that could lead to complete device takeovers by attackers with access to the HNAP port.

#bleepingcomputer #EN #2024 #Authentication-Bypass #D-Link #Exploit #Proof-of-Concept #Remote-Command-Execution #Router #Vulnerability #Zero-Day #Security #InfoSec #Computer-Security

·bleepingcomputer.com·May 14, 2024

PoC exploit released for RCE zero-day in D-Link EXO AX4800 routers

Ivanti fixes critical Standalone Sentry bug reported by NATO

Ivanti warned customers to immediately patch a critical severity Standalone Sentry vulnerability reported by NATO Cyber Security Centre researchers.

#bleepingcomputer #EN #2024 #Ivanti #NATO #Vulnerability #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Mar 20, 2024

Ivanti fixes critical Standalone Sentry bug reported by NATO

Hackers exploit Ivanti SSRF flaw to deploy new DSLog backdoor

Hackers are exploiting a server-side request forgery (SSRF) vulnerability in Ivanti Connect Secure, Policy Secure, and ZTA gateways to deploy the new DSLog backdoor on vulnerable devices.

#bleepingcomputer #EN #2024 #Backdoor #Ivanti #Malware #SSRF #Vulnerability #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Feb 13, 2024

Hackers exploit Ivanti SSRF flaw to deploy new DSLog backdoor

Apple fixes zero-day bug in Apple Vision Pro that 'may have been exploited'

Apple said the vulnerability, which is being exploited in the wild, allows malicious code to run on an affected device.

#techcrunch #EN #2024 #security #apple-vision-pro #cybersecurity #exploit #vulnerability

·techcrunch.com·Feb 1, 2024

Apple fixes zero-day bug in Apple Vision Pro that 'may have been exploited'

Malicious PyPI Packages Slip WhiteSnake InfoStealer Malware onto Windows Machines

Malicious code hiding in seemingly innocent PyPI packages steals your passwords, crypto & more #attacks #breach #computer #cyber #data #hack #hacker #hacking #how #information #malware #network #news #ransomware #security #software #the #to #today #updates #vulnerability

#hacking #attacks #information #network #data #to #updates #malware #cyber #today #news #ransomware #breach #security #software #hack #the #hacker #how #computer #vulnerability

·thehackernews.com·Jan 29, 2024

Malicious PyPI Packages Slip WhiteSnake InfoStealer Malware onto Windows Machines

Over 5,300 GitLab servers exposed to zero-click account takeover attacks

Over 5,300 internet-exposed GitLab instances are vulnerable to CVE-2023-7028, a zero-click account takeover flaw GitLab warned about earlier this month.

#bleepingcomputer #EN #2024 #Account-Takeover #Alert #Exposed #GitLab #Password-Reset #Security #Vulnerability

·bleepingcomputer.com·Jan 24, 2024

Over 5,300 GitLab servers exposed to zero-click account takeover attacks

A simple bug exposed access to thousands of smart security alarm systems

The vulnerability — now fixed — was discovered in a cloud-based system that allows customers to remotely manage their security alarm systems.

#techcrunch #EN #2023 #security #cybersecurity #home-security-systems #smart #alarm #systems #IoT #vulnerability

·techcrunch.com·Jun 17, 2023

A simple bug exposed access to thousands of smart security alarm systems

Jenkins discloses dozens of zero-day bugs in multiple plugins

On Thursday, the Jenkins security team announced 34 security vulnerabilities affecting 29 plugins for the Jenkins open source automation server, 29 of the bugs being zero-days still waiting to be patched.

#bleepingcomputer #EN #2023 #CSRF #Jenkins #Vulnerability #XSS #Zero-Day #Security

·bleepingcomputer.com·Jan 5, 2023

Jenkins discloses dozens of zero-day bugs in multiple plugins

#bleepingcomputer #EN #2023 #CSRF #Jenkins #Vulnerability #XSS #Zero-Day #Security

·bleepingcomputer.com·Jan 5, 2023

Jenkins discloses dozens of zero-day bugs in multiple plugins