Security Intelligence

Critical Bluetooth vulnerability affects Apple, Android, and Linux

New critical Bluetooth vulnerability allows threat actors to take control of Android, Linux, macOS, and iOS devices.

Security Intelligence

Russian APT28 hackers exploiting known flaws in latest campaign

Russia’s Military Intelligence Directorate exploits several known vulnerabilities to target government, energy,...

Security Intelligence

Apple's latest update patches two actively exploited zero-days

Apple released emergency updates to address two actively exploited zero-day vulnerabilities discovered in the WebKit...

Security Intelligence

Iran-linked Cyber Av3ngers group compromises U.S. water authority

The Iran-linked threat actor Cyber Av3ngers compromises Municipal Water Authority in Pennsylvania.

Security Intelligence

ownCloud the latest file-sharing platform to be exploited

Security researchers observed unnamed threat actors exploiting a critical vulnerability in the widely adopted...

Security Intelligence

Citrix NetScaler users urged to kill user sessions to stop the bleed

NetScaler ADC and Gateway product users urged to kill all previous and active user sessions in addition to patching...

Security Intelligence

Two infostealers flex new ability to restore expired Google cookies

Two developers of information-stealing malware, known as infostealers, recently advertised a new capability to restore...

Security Intelligence

Patch CrushFTP servers to flatten risk of exploit

Proof-of-concept exploit code released for CrushFTP vulnerability that allows threat actors to access files on the...

Security Intelligence

The FBI untangles Scattered Spider’s web

The FBI and CISA have released a joint Cybersecurity Advisory (CSA) on Scattered Spider.

Security Intelligence

Exploit code for Apache ActiveMQ flaw gets leveled up

Security researchers have developed a new method to exploit a critical vulnerability in Apache ActiveMQ.

Security Intelligence

VMware offers workaround, not patch, for critical vulnerability

VMware has announced it has become aware of a critical vulnerability in its Cloud Director appliance.

Security Intelligence

Atlassian escalates Confluence bug severity rating to maximum

Atlassian has raised the CVSS score of CVE-2023-22518 to the maximum of 10 amid reports that threat actors have...