英文文章归档 - 第10页共17页

Feature：英文文章

@Pikachu · 15 天前

Exim SMTP Service Zero-day Flaw Let Attackers Execute Remote Code

Six new zero-day vulnerabilities in Exim Message Transfer Agent have been reported as part of the Zero-Day initiative. These vulnerabilities were discovered in June 2022 but were not disclosed until now as Exim did not fix them. ...

@Pikachu · 15 天前

Microsoft Teams & Edge Zero-Day Vulnerabilities Leads to Code Execution

Microsoft has addressed two zero-day vulnerabilities in two Open-Source Software security vulnerabilities, which include Microsoft Edge, Microsoft Teams for Desktop, Skype for Desktop, and Webp images extension. These vulnerab ...

@Pikachu · 15 天前

Qualcomm Sys Hackers Actively Exploit 3 new Zero-Days – Patch Now

Three new zero days have been reported to Qualcomm, which were CVE-2023-33106, CVE-2023-33107, and CVE-2023-33063. These vulnerabilities were discovered as part of Google Project Zero and were disclosed to Qualcomm by Google Thre ...

@Pikachu · 15 天前

Sony Breached Via MOVEit Zero-Day Vulnerability

Sony Interactive Entertainment (SIE) discloses a cybersecurity breach caused by the exploitation of a zero-day vulnerability in Progress Software’s MOVEit Transfer platform. Nearly 6791 current and former workers or members of ...

@Pikachu · 15 天前

Apple Emergency Update for New Zero-Day Used to Hack iPhones

Apple has discovered a Zero-day vulnerability affecting iOS and iPadOS versions earlier than 17.0.3, which could allow threat actors to elevate their privileges. The CVE for this vulnerability has been given as CVE-2023-42824, an ...

@Pikachu · 15 天前

Zero-Day WhatsApp Hacking Vulnerabilities Worth Millions

Securing the devices running iOS and Android operating systems is now costly due to improved defenses. According to a recent report by TechCrunch, there has been a surge in the demand for zero-day exploits that can be used to ...

@Pikachu · 15 天前

HTTP/2 Rapid Reset Zero-day Flaw Exploited to Launch Massive DDoS Attack

Cloudflare was unexpectedly hit by an enormous HTTP attack that peaked at over 201 million requests per second. Starting on August 25, 2023, this onslaught posed a significant challenge, especially considering that it was init ...

@Pikachu · 15 天前

Nation-state Hackers Exploiting Confluence Zero-day Vulnerability

Microsoft has detected the nation-state threat actor Storm-0062, also known as DarkShadow or Oro0lxy, exploiting CVE-2023-22515 in the wild since September 14, 2023. The vulnerability was publicly disclosed on October 4, 2023 ...

@Pikachu · 15 天前

CISA, FBI Warns of Critical Atlassian Zero-Day Flaw Under Active Attack

A serious security flaw in some versions of Atlassian Confluence Data Center and Server has been exploited by hackers. They have used this flaw to create fake admin accounts and access Confluence servers. This flaw is called ...

@Pikachu · 15 天前

Hackers Exploit Roundcube Zero-day to Attack Government Email Servers

Hackers usually opt for zero-day vulnerabilities because they are not publicly known, making them more difficult for defenders to patch or protect against. This gives hackers an advantage by exploiting a flaw before it’s disc ...

Pikachu Hacker