The Hacker News

ShadowPad Malware Actively Exploits WSUS Vulnerability for Full System Access

ShadowPad malware is being delivered through an actively exploited WSUS vulnerability, granting attackers full system access.
The Hacker News

CISA Warns of Actively Exploited Critical Oracle Identity Manager Zero-Day Vulnerability

CISA adds exploited Oracle Identity Manager CVSS 9.8 flaw to KEV catalog as agencies rush to patch zero-day attacks.
Infosecurity Magazine

CISA Urges Patch of Actively Exploited Flaw in Oracle Identity Manager

It was reported by Oracle on November 21 and added to CISA Known Exploited Vulnerabilities (KEV) catalog the same day ...

Fortinet confirms silent patch for FortiWeb zero-day exploited in attacks

Fortinet has silently patched a critical zero-day vulnerability in its FortiWeb web application firewall, which is now being ...

Fortinet warns of new FortiWeb zero-day exploited in attacks

Today, Fortinet released security updates to patch a new FortiWeb zero-day vulnerability that threat actors are actively ...
SecurityWeek

Critical Triofox Vulnerability Exploited in the Wild

A threat actor exploited a critical vulnerability in Triofox to obtain remote access to a vulnerable server and then achieve code execution.
CRN

CISA Urges Quick Fortinet Patches Amid Exploitation Of New FortiWeb Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is urging a quick response to Fortinet’s disclosure of a ...

These routers are vulnerable to hackers: Update urgently now!

A security vulnerability in Asus router models can be exploited for targeted attacks. A firmware update provides a remedy, so ...
CRN

CISA: ‘Critical’ Flaw In Oracle Fusion Middleware Exploited In Attacks

A critical-severity vulnerability that impacts the Identity Manager tool within Oracle’s Fusion Middleware platform has seen ...
SecurityWeek

SolarWinds Patches Three Critical Serv-U Vulnerabilities

SolarWinds this week announced patches for three critical vulnerabilities found in its Serv-U enterprise file transfer ...
Bitdefender

Patch Your Browser! Chrome V8 Security Bug Likely Exploited by Hackers, Says Google

Google has released an important security fix for Chrome users on desktop, signaling that hackers may be exploiting the issue ...
Seeking Alpha

Microsoft says Chinese hackers exploiting SharePoint vulnerabilities

Microsoft (NASDAQ:MSFT) said Chinese hackers have been exploiting vulnerabilities in its SharePoint software, which led to breaches recently. Microsoft said it has observed two named Chinese ...