zero-day flaw Archives

Ivanti VPN Zero-Day Combo Chained ‘by China’

Richi Jennings | January 12, 2024 | CVE-2023-46805, CVE-2024-21887, Ivanti, ivanti acquisition, Ivanti Zero day vulnerability, SB Blogwatch, Zero Day Attacks, zero-day, zero-day attack, Zero-Day Bug, Zero-day Exploit, zero-day exploits, zero-day flaw, zero-day flaws, zero-day threat, Zero-day threats, zeroday, zerodayvulnerabilities

Under active exploitation since last year—but still no patch available ...

Security Boulevard

Lace Tempest Exploits SysAid Zero-Day Flaw

Wajahat Raja | November 23, 2023 | clop-ransomware, CVE-2023-47246, Cybersecurity News, DEV-0950, Lace Tempest, Microsoft, MOVEit Transfer, Path traversal vulnerability, powershell, security update, SysAid, Tomcat web service, WebShell, zero-day flaw

In a recent revelation, SysAid, a leading IT management software provider, has unveiled a critical security threat affecting its on-premises software. The threat actor, identified as DEV-0950 or Lace Tempest by Microsoft, ...

TuxCare

The Golden Gate Bridge, under an blood-red sky

Cisco Zero-Day: As Bad as it Gets — and No Fix 4 Weeks in

Keeping us in suspense—It doesn’t get worse than this: CVE-2023-20198 is CVSS=10 ...

Security Boulevard

Adobe Patches Zero-Day Flaw in Flash Player

Lucian Constantin | November 23, 2018 | credit card skimming, Flash Player, IoT botnet, Magecart, Mirai, web skimming, zero-day flaw

Adobe Systems fixed a critical vulnerability in Flash Player that was publicly disclosed by a researcher earlier this month. The vulnerability, tracked as CVE-2018-15981, is a type confusion issue that can lead ...

Security Boulevard

data security. identity,organization, survey, data, data governance, data privacy, data security, AI, FTC data broker geolocation

New Windows Zero-Day Flaw Dropped on Twitter

Lucian Constantin | October 25, 2018 | card skimming, Magecart, Magento, Privilege Escalation, Windows vulnerability, zero-day flaw

A new vulnerability affecting Windows 10 has been disclosed on Twitter before being patched and it allows attackers to delete system files or to replace sensitive libraries. The vulnerability is located in ...

Security Boulevard