英文文章归档 - 第12页共17页

Feature：英文文章

@Pikachu · 15 天前

CrushFTP Zero-Day Could Allow Attackers To Gain Complete Server Access

CrushFTP disclosed a zero-day vulnerability (CVE-2024-4040) affecting versions below 10.7.1 and 11.1.0. The vulnerability allows remote attackers with low privileges to bypass the VFS sandbox and read arbitrary files on the under ...

@Pikachu · 15 天前

ArcaneDoor Hackers Who Exploited Cisco Firewall Zero-Days Linked To China

Hackers target Cisco Firewalls due to their widespread use and the potential to exploit vulnerabilities to gain unauthorized access, steal data, and launch cyber attacks. Cisco Talos recently reported on a global campaign dub ...

@Pikachu · 15 天前

Critical OpenVPN Zero-Day Flaws Affecting Millions of Endpoints Across the Globe

Security researchers have uncovered four zero-day vulnerabilities within OpenVPN, the world’s leading VPN solution. These vulnerabilities pose significant threats to millions of devices globally. These vulnerabilities, ide ...

@Pikachu · 15 天前

Beware! Threat Actor Selling Outlook RCE 0-Day on Hacking Forums

A new threat has emerged on the darker corners of the internet. A threat actor has reportedly put up for sale a Remote Code Execution (RCE) 0-day exploit targeting various versions of Microsoft Outlook, with a staggering aski ...

@Pikachu · 15 天前

13,800+ Internet-Exposed Check Point Gateways Vulnerable To 0-Day Attacks: Poc Released

A critical zero-day vulnerability, CVE-2024-24919, has been discovered in Check Point Security Gateways, enabling the IPSec VPN or Mobile Access blades. This vulnerability is actively exploited in the wild, posing a significa ...

@Pikachu · 15 天前

Huge Surge in Attacks Exploiting Check Point VPN Zero-Day Vulnerability

Check Point published an advisory regarding a critical vulnerability, CVE-2024-24919, which has since seen a surge in exploitation attempts. The vulnerability, rated with a CVSS score of 8.6, allows attackers to access sensiti ...

@Pikachu · 15 天前

Hackers Weaponizing Shortcut Files With Zero-day Tricks To Attack Windows Users

Hackers weaponize shortcut files because they are an inconspicuous way to execute malicious code on a target system. These files can be disguised as harmless icons but actually contain commands that, when clicked, launch harm ...

@Pikachu · 15 天前

Hackers Exploiting Vulnerabilities Within 22 Minutes Of PoC Release

The growing tension and global elections in the past year have presented major challenges to internet security, raising the volume of malicious traffic. Cloudflare cybersecurity researchers presented their Q1 2024 Application ...

@Pikachu · 15 天前

Hackers Attacking Windows Users With Internet Explorer Zero-Day Vulnerability

Hackers target legitimate Remote Monitoring and Management (RMM) tools as they provide powerful, trusted access to systems and networks. This can facilitate the widespread and efficient deployment of malware across an organiza ...

@Pikachu · 15 天前

Telegram Zero-Day Vulnerability Exploited Using Malicious Video Files

ESET researchers recently discovered a critical zero-day vulnerability in the Telegram messaging app for Android, potentially exposing millions of users to malicious attacks. The exploit, dubbed “EvilVideo,” allowed attackers ...

Pikachu Hacker