Tag: Remote Code Execution Vulnerability

Cybersecurity Patch Tuesday Updates

Patch Tuesday December 2021 – Microsoft Fixes 67 Flaws, Including 6 Zero-Day Vulnerabilities

5 months ago
admin

December’s Patch Tuesday comes with numerous security fixes and improvements, including two actively exploited zero-day vulnerabilities. The list features spoofing, denial of service, remote code execution, elevation of privilege, and…

Cybersecurity

CISA orders federal civilian agencies to patch Log4j vulnerability and 12 others by December 24

5 months ago
admin

The US Cybersecurity and Infrastructure Security Agency has ordered all civilian federal agencies to patch the Log4j vulnerability and three others by December 24, adding it to the organization’s Known…

Cybersecurity Cybersecurity Awareness Ransomware

Technical Advisory: Zero-day critical vulnerability in Log4j2 exploited in the wild

5 months ago
admin

On December 9, 2021, Apache disclosed CVE-2021-44228, a remote code execution vulnerability – assigned with a severity of 10 (the highest possible risk score). The source of the vulnerability is Log4j,…

Cybersecurity Cybersecurity News Log4j rce Vulnerabilities

All You Need to Know About the New Zero-Day Found in the Log4j Java Library

5 months ago
admin

Log4j 2 is a Java logging library that is open source and extensively used in a variety of software applications and services throughout the world. The flaw gives threat actors…

Advanced Persistent Threats Cybersecurity Cybersecurity Awareness

Security Advisory: Bitdefender Response to Critical Zero-Day Apache Log4j2 Vulnerability

5 months ago
admin

On December 9, 2021, Apache disclosed CVE-2021-44228, a remote code execution vulnerability – assigned with a severity of 10 (the highest possible risk score) – affecting Apache Log4j2, a Java-based…

Cybersecurity Cybersecurity News patch patching zoho

The In-house Zoho ServiceDesk Exploit Used to Drop Webshells

6 months ago
admin

You may recall that we reported a while ago that state-backed advanced persistent threat (APT) organizations had been actively exploiting a significant hole in a Zoho single sign-on and password…

Cybersecurity Trend Micro Research : Articles, News, Reports Trend Micro Research : Cyber Crime Trend Micro Research : Cyber Threats Trend Micro Research : Endpoints Trend Micro Research : Exploits & Vulnerabilities Trend Micro Research : Malware

Vulnerabilities Exploited for Monero Mining Malware Delivered via GitHub, Netlify

6 months ago
admin

Trend Micro – Trend Micro – Vulnerabilities Exploited for Monero Mining Malware Delivered via GitHub, Netlify We looked into exploitation attempts we observed in the wild and the abuse of…

Cybersecurity Cybersecurity News memento ransomware group WinRAR

Files Within Password-Protected WinRAR Archives Locked by New Memento Ransomware Group

6 months ago
admin

Memento ransomware group makes its way on the threat landscape scene. Their approach seems to be quite uncommon, as the threat actor group locks files in WinRAR archives protected by…

Cybersecurity Cybersecurity News Internet Explorer Internet Explorer Vulnerabilities magniber ransomware Ransomware

Magniber Ransomware Shifts Attention Now to Internet Explorer Vulnerabilities

6 months ago
admin

A change of focus took place in the Magniber ransomware’s gang attack method arsenal, as now the threat actor group started to propagate the ransomware and encrypt users’ devices by…

Cybersecurity

Palo Alto Networks patches zero-day affecting firewalls using GlobalProtect Portal VPN

6 months ago
admin

Researchers with cybersecurity firm Randori have discovered a remote code execution vulnerability in Palo Alto Networks firewalls using the GlobalProtect Portal VPN.  ZDNet Recommends The zero-day — which has a…