Technology Unpatched critical flaws impact Fancy Product Designer WordPress plugin Jan 8, 2025 bleepingcomputer.com Premium WordPress plugin Fancy Product Designer from Radykal is vulnerable to two critical severity flaws that remain unfixed in the…
Cyber Security Orgs Scramble to Fix Actively Exploited Bug in Apache Struts 2 Dec 19, 2024 darkreading.com A newly discovered vulnerability, CVE-2024-53677, in the aging Apache framework is going to cause major headaches for IT teams, since…
Cyber Security Orgs Scramble to Fix Actively Exploited Bug in Apache Struts 2 Dec 19, 2024 darkreading.com A newly discovered vulnerability, CVE-2024-53677, in the aging Apache framework is going to cause major headaches for IT teams, since…
Technology Malware infiltrates Pidgin messenger’s official plugin repository Aug 27, 2024 bleepingcomputer.com The Pidgin messaging app removed the ScreenShareOTR plugin from its official third-party plugin list after it was discovered that it…
Technology Versa fixes Director zero-day vulnerability exploited in attacks Aug 26, 2024 bleepingcomputer.com Versa Networks has fixed a zero-day vulnerability exploited in the wild that allows attackers to upload malicious files by exploiting an…
Technology ASUS warns of critical remote authentication bypass on 7 routers Jun 15, 2024 bleepingcomputer.com ASUS has released a new firmware update that addresses a vulnerability impacting seven router models that allow remote attackers to log in…
Technology Critical Forminator plugin flaw impacts over 300k WordPress sites Apr 20, 2024 bleepingcomputer.com The Forminator WordPress plugin used in over 500,000 sites is vulnerable to a flaw that allows malicious actors to perform unrestricted…
Technology GitHub comments abused to push malware via Microsoft repo URLs Apr 20, 2024 bleepingcomputer.com A GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with…
Technology New WogRAT malware abuses online notepad service to store malware Mar 5, 2024 bleepingcomputer.com A new malware dubbed 'WogRAT' targets both Windows and Linux in attacks abusing an online notepad platform named 'aNotepad' as…
Cyber Security More Ivanti VPN Zero-Days Fuel Attack Frenzy as Patches Finally Roll Jan 31, 2024 darkreading.com Both China-backed APTs and ordinary cyberattackers have seized on a pair of Ivanti VPN bugs for global exploitation.
Unpatched critical flaws impact Fancy Product Designer WordPress plugin
Premium WordPress plugin Fancy Product Designer from Radykal is vulnerable to two critical severity flaws that remain unfixed in the…
Orgs Scramble to Fix Actively Exploited Bug in Apache Struts 2
A newly discovered vulnerability, CVE-2024-53677, in the aging Apache framework is going to cause major headaches for IT teams, since…
Orgs Scramble to Fix Actively Exploited Bug in Apache Struts 2
A newly discovered vulnerability, CVE-2024-53677, in the aging Apache framework is going to cause major headaches for IT teams, since…
Malware infiltrates Pidgin messenger’s official plugin repository
The Pidgin messaging app removed the ScreenShareOTR plugin from its official third-party plugin list after it was discovered that it…
Versa fixes Director zero-day vulnerability exploited in attacks
Versa Networks has fixed a zero-day vulnerability exploited in the wild that allows attackers to upload malicious files by exploiting an…
ASUS warns of critical remote authentication bypass on 7 routers
ASUS has released a new firmware update that addresses a vulnerability impacting seven router models that allow remote attackers to log in…
Critical Forminator plugin flaw impacts over 300k WordPress sites
The Forminator WordPress plugin used in over 500,000 sites is vulnerable to a flaw that allows malicious actors to perform unrestricted…
GitHub comments abused to push malware via Microsoft repo URLs
A GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with…
New WogRAT malware abuses online notepad service to store malware
A new malware dubbed 'WogRAT' targets both Windows and Linux in attacks abusing an online notepad platform named 'aNotepad' as…
More Ivanti VPN Zero-Days Fuel Attack Frenzy as Patches Finally Roll
Both China-backed APTs and ordinary cyberattackers have seized on a pair of Ivanti VPN bugs for global exploitation.