Security Online

Qlik Sense Users Face Serious Security Risk

These vulnerabilities, identified as CVE-2024-55579 and CVE-2024-55580, could allow unprivileged users with network access to compromise the server, potentially leading to remote code execution (RCE) and broken access control.

Browser Isolation Bypassed: QR Codes Used in Novel C2 Attacks

A recent report from Thibault Van Geluwe de Berlaere at Mandiant unveils an innovative method for attackers to bypass browser isolation and execute command-and-control (C2) operations using QR codes.

AsyncHttpClient Vulnerability Puts Java Applications at Risk

This vulnerability (CVE-2024-53990) poses a significant risk to applications that rely on AsyncHttpClient for handling user authentication and authorization, especially those that interact with third-party services.

Multiple Vulnerabilities in SonicWall SMA 100 Could Lead to Remote Code Execution

“A vulnerability in the SonicWall SMA100 SSLVPN web management interface allows remote attackers to cause Stack-based buffer overflow and potentially lead to code execution,” warns the advisory, highlighting the severity of CVE-2024-45318.

Critical Flaw in Sweet Date WordPress Theme Exposes Thousands of Sites to Potential Takeovers

A critical vulnerability (CVE-2024-43222) has been identified in the Sweet Date WordPress theme, a popular premium theme with nearly 10,000 downloads. The vulnerability carries a CVSS score of 9.8.

Fake DocuSign Emails: Don’t Get Hooked by Phishing Scams

DocuSign phishing attacks often masquerade as legitimate emails, complete with official branding and formats that closely mimic genuine DocuSign communications. Typically, the emails claim a document is awaiting the recipient’s signature.

Critical Zero-Day Vulnerability in Windows Exposes User Credentials

A newly discovered zero-day vulnerability affecting all supported and legacy versions of Microsoft Windows allows attackers to capture user NTLM credentials through the simple act of file viewing within Windows Explorer.

Django Releases Patches for CVE-2024-53907 and CVE-2024-53908 to Mitigate DoS and SQLi Threats

Patches to address both CVE-2024-53907 and CVE-2024-53908 have been applied to the main, 5.1, 5.0, and 4.2 branches. Users can obtain the patches from the respective changesets provided in the official Django security advisory.

Beware of Celestial Stealer: New MaaS Targets Browsers and Crypto Wallets

Celestial Stealer operates as a MaaS offering marketed on Telegram, with subscription plans available on a weekly, monthly, or lifetime basis. It is primarily designed for Windows 10 and 11.

New Andromeda/Gamarue Command-and-Control Cluster Targets APAC Industries

In a recent report, the Cybereason Security Services Team unveiled the discovery of a new cluster of Command-and-Control (C2) servers linked to the infamous Andromeda (aka Gamarue) malware family.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags