exploit Archives - Page 2 of 39

exploit

Attackers probing for vulnerable Microsoft Exchange Servers, is yours one of them?

February 26, 2020

CVE-2020-0688, a remote code execution bug in Microsoft Exchange Server that has been squashed by Microsoft in early February, is ripe for exploitation and could become a …

Google fixes another Chrome zero-day exploited in the wild

February 26, 2020

For the third time in a year, Google has fixed a Chrome zero-day (CVE-2020-6418) that is being actively exploited by attackers in the wild. About CVE-2020-6418 No details have …

Exploits for Citrix ADC and Gateway flaw abound, attacks are ongoing

January 13, 2020

With several exploits targeting CVE-2019-19781 having been released over the weekend and the number of vulnerable endpoints still being over 25,000, attackers are having a …

Attackers exploiting critical Citrix ADC, Gateway flaw, company yet to release fixes

January 9, 2020

Nearly a month has passed since Citrix released mitigation measures for CVE-2019-19781, a critical vulnerability affecting Citrix Application Delivery Controller and Citrix …

App on Google Play exploited Android bug to deliver spyware

January 8, 2020

Google has pulled three malicious apps from Google Play, one of which exploits a recently patched kernel privilege escalation bug in Android (CVE-2019-2215) to install the app …

Cisco Data Center Network Manager flaws fixed, Cisco ASA appliances under attack

January 6, 2020

Cisco has fixed 12 vulnerabilities in Cisco Data Center Network Manager (DCNM), a platform for managing Cisco switches and fabric extenders that run NX-OS, and has warned …

Crooks are exploiting unpatched Android flaw to drain users’ bank accounts

December 3, 2019

Hackers are actively exploiting StrandHogg, a newly revealed Android vulnerability, to steal users’ mobile banking credentials and empty their accounts, a Norwegian app …

Apache Solr RCEs with public PoCs could soon be exploited

November 25, 2019

Two remote code execution (RCE) vulnerabilities in Apache Solr could be exploited by attackers to compromise the underlying server. One – CVE-2019-12409 – has …

Phishing attempts increase 400%, many malicious URLs found on trusted domains

October 9, 2019

1 in 50 URLs are malicious, nearly one-third of phishing sites use HTTPS and Windows 7 exploits have grown 75% since January. A new Webroot report also highlights the …

vBulletin zero-day exploited in the wild in wake of exploit release

September 25, 2019

An anonymous bug hunter has released a working and elegantly simple exploit for a pre-authentication remote code execution flaw (CVE-2019-16759) affecting vBulletin and it …

Attackers are exploiting vulnerable WP plugins to backdoor sites

September 3, 2019

A group of attackers that has been injecting WordPress-based sites with a script redirecting visitors to malicious and fraudulent pages has now also started backdooring the …

Google discovers websites exploiting iPhones, pushing spying implants en masse

August 30, 2019

Unidentified attackers have been compromising websites for nearly three years, equipping them with exploits that would hack visiting iPhones without any user interaction and …