Microsoft fixes under-attack privilege-escalation holes in Hyper-V
Next up is an issue with Microsoft's security client/server code snappily dubbed the Simple and Protected GSSAPI Negotiation ...
The Hacker News5 小时
3 Actively Exploited Zero-Day Flaws Patched in Microsoft's Latest Security Update
All the three Microsoft Access issues, on the other hand, have been credited to Unpatched.ai, an AI-guided vulnerability ...
Nominet says it was hit by cyberattack following recent Ivanti VPN security issue
Ivanti had recently warned customers of a critical vulnerability impacting its VPN appliances being actively exploited in the ...
Fortinet warns of auth bypass zero-day exploited to hijack firewalls
Attackers are exploiting a new authentication bypass zero-day vulnerability in FortiOS and FortiProxy to hijack Fortinet ...
SecurityWeek23 小时
Critical Aviatrix Controller Vulnerability Exploited Against Cloud Environments
Attackers are exploiting a critical vulnerability in Aviatrix Controller to execute arbitrary code in AWS cloud environments.
CISA tells agencies to patch BeyondTrust bug now
The US Cybersecurity and Infrastructure Security Agency (CISA) has added two recently-discovered BeyondTrust bugs to its ...
The Hacker News21 小时
Hackers Exploit Aviatrix Controller Vulnerability to Deploy Backdoors and Crypto Miners
CVE-2024-50603 in Aviatrix Controller enables remote code execution, cryptomining, and backdoor attacks. Patch now.
techzine2 小时
Fortinet zero-day allows hackers to access corporate networks
Fortinet has issued a warning about a critical zero-day in firewalls. Hackers are actively exploiting this authentication ...
SecurityWeek23 小时
Many Ivanti VPNs Still Unpatched as UK Domain Registry Emerges as Victim of Exploitation
Ivanti VPNs are still exposed to attacks exploiting a recent vulnerability tracked as CVE-2025-0282 and Nominet has been ...
Ivanti warns another critical security flaw is being attacked
Ivanti has warned customers of a critical vulnerability impacting its VPN appliances that is being actively exploited in the ...
Another top WordPress plugin found carrying critical security flaws
A popular WordPress plugin was found carrying two critical vulnerabilities that allow threat actors to upload files, tamper ...
Infosecurity-magazine.com5 天
Fancy Product Designer Plugin Flaws Expose WordPress Sites
Critical Fancy Product Designer plugin flaws risk remote code execution and SQL injection attacks on WordPress sites ...