Severity High Analysis Summary CVE-2024-21434 CVSS:7.8 Microsoft Windows could allow a local authenticated attacker to gain elevated privileges on the system, caused by a flaw in […]

Severity High Analysis Summary CVE-2024-22041 CVSS:7.5 Siemens Sinteso EN Cerberus PRO EN Fire Protection Systems is vulnerable to a denial of service, caused by an out-of-bounds […]

Severity High Analysis Summary APT-C-35 (also known as “Donot APT Group”) is a cyber espionage group that has been active since at least 2013. The group […]

Severity High Analysis Summary The cybersecurity landscape constantly evolves with threat actors like the Russian-speaking cybercrime group RedCurl employing sophisticated tactics to carry out corporate espionage. […]

Severity High Analysis Summary Cybersecurity researchers have uncovered a new phishing campaign that is spreading remote access trojans (RATs) like STRRAT and VCURMS using a malicious […]

Severity High Analysis Summary The United Arab Emirates (UAE) has expeditiously adopted IT (Information Technology) and OT (Operational Technology) for advancement, but this rapid adoption has […]

Severity High Analysis Summary CVE-2024-1917 CVSS:9.8 Mitsubishi Electric MELSEC-Q/L Series could allow a remote attacker to execute arbitrary code on the system, caused by integer overflow […]

Severity High Analysis Summary Ducktail Malware is a malicious program designed by hackers to infiltrate computers and networks globally. Ducktail malware is typically delivered through a […]

Severity High Analysis Summary CVE-2024-21419 CVSS:7.6 Microsoft Dynamics 365 (on-premises) is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated attacker […]

Severity High Analysis Summary The PixPirate Android banking trojan has evolved with new evasion techniques, making it more challenging to detect and remove from compromised devices. […]

Severity High Analysis Summary Fortinet has recently patched a critical vulnerability in its FortiClient Enterprise Management Server (EMS) software, identified as CVE-2023-48788, which allows attackers to […]

Severity High Analysis Summary The SideWinder APT (Advanced Persistent Threat) Group is a sophisticated cyber espionage group active since at least 2012. The group is believed […]

Severity High Analysis Summary CVE-2024-27266 CVSS:8.2 IBM Maximo Application Suite 7.6.1.3 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A […]

Severity High Analysis Summary A cybercriminal tracked as Blind Eagle has been discovered leveraging a loader malware named Ande Loader to propagate remote access trojans such […]

Severity Medium Analysis Summary CVE-2024-26119 CVSS:5.3 Adobe Experience Manager could allow a remote attacker to bypass security restrictions, caused by improper access control. By persuading a […]

Severity Medium Analysis Summary CVE-2024-20318 CVSS:7.4 Cisco IOS XR Software is vulnerable to a denial of service, caused by improper handling of specific Ethernet frames received […]

Severity High Analysis Summary A new campaign propagating the DarkGate malware in multiple waves of attacks has been leveraging a now-patched Windows Defender SmartScreen security flaw […]

Severity High Analysis Summary CVE-2024-26199 CVSS:7.8 Microsoft Office could allow a local authenticated attacker to gain elevated privileges on the system. By executing a specially crafted […]

Severity High Analysis Summary CVE-2024-23672 CVSS:7.5 Apache Tomcat is vulnerable to a denial of service, caused by an incomplete cleanup flaw. By sending specially crafted WebSocket […]

Severity Medium Analysis Summary Quasar virus is a Remote Access Trojan (RAT) that is often abused by cybercriminals to take remote control over users’ computers for […]

Severity High Analysis Summary The Konni APT (Advanced Persistent Threat) group has been a cyber espionage group since at least 2014. It is believed to be […]

Severity High Analysis Summary CVE-2024-2400 Google Chrome could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free in Performance Manager. […]

Severity Medium Analysis Summary CVE-2023-43490 CVSS:5.3 Intel Xeon D processors with Intel SGX could allow a local authenticated attacker to obtain sensitive information, caused by incorrect […]

Severity High Analysis Summary CVE-2023-42790 CVSS:9.8 Fortinet FortiOS and FortiProxy are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the captive portal. […]