Latest news

Urgent: GitLab warns of critical vulnerability, advises immediate patching
Vulnerability

Urgent: GitLab warns of critical vulnerability, advises immediate patching

13 September 2024 dark6

GitLab, a popular DevOps platform, has recently released a critical security update to address several high-severity vulnerabilities. Organizations using GitLab...
Read more 0
Critical Active Directory certificate services vulnerabilities: implications and mitigation strategies
Vulnerability

Critical Active Directory certificate services vulnerabilities: implications and mitigation strategies

12 September 2024 dark6

Microsoft’s Active Directory Certificate Services (AD CS), a PKI implementation in Active Directory environments, has been found to contain critical...
Read more 0
Critical vulnerability compromises the security of .MOBI top-level domain
Vulnerability

Critical vulnerability compromises the security of .MOBI top-level domain

12 September 2024 dark6

A recent vulnerability discovery has exposed a glaring security flaw in the .MOBI domain name ecosystem. This vulnerability, stemming from...
Read more 0
Threat landscape: EV charging infrastructure under attack
Vulnerability

Threat landscape: EV charging infrastructure under attack

12 September 2024 dark6

As electric vehicles (EVs) gain traction, their reliance on interconnected systems and widespread public charging infrastructure introduces significant cybersecurity risks....
Read more 0
Browser-based credential theft: a growing threat
Vulnerability

Browser-based credential theft: a growing threat

12 September 2024 dark6

In the evolving cybersecurity landscape, web browsers have become a primary target for cybercriminals seeking to steal users’ credentials. This...
Read more 0
Critical Zero-Day vulnerability in Microsoft’s App Control
Vulnerability

Critical Zero-Day vulnerability in Microsoft’s App Control

11 September 2024 dark6

Microsoft has released a critical security update to address an actively exploited zero-day vulnerability affecting its Windows Smart App Control...
Read more 0
Microsoft september 2024 Patch Tuesday: mitigating critical vulnerabilities
Vulnerability

Microsoft september 2024 Patch Tuesday: mitigating critical vulnerabilities

11 September 2024 dark6

The latest Microsoft Patch Tuesday, released in September 2024, addresses a substantial number of security vulnerabilities, including four critical zero-day...
Read more 0
Critical RCE vulnerabilities in Ivanti Endpoint Manager grant remote server access to attackers
Vulnerability

Critical RCE vulnerabilities in Ivanti Endpoint Manager grant remote server access to attackers

10 September 2024 dark6

Ivanti has released security updates for its Endpoint Manager (EPM) 2024 and 2022 SU6 versions to address multiple severe and...
Read more 0
WhatsApp’s view once privacy flaw: exploited and abusable
Vulnerability

WhatsApp’s view once privacy flaw: exploited and abusable

10 September 2024 dark6

WhatsApp’s “View Once” feature, designed to enhance privacy by allowing users to share disappearing photos and videos, has come under...
Read more 0
Alert: CISA warns of three actively exploited vulnerabilities
Vulnerability

Alert: CISA warns of three actively exploited vulnerabilities

10 September 2024 dark6

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding three critical vulnerabilities that are currently being exploited...
Read more 0
Quad7 Botnet: expanding threat landscape targets routers and VPNs
Vulnerability

Quad7 Botnet: expanding threat landscape targets routers and VPNs

10 September 2024 dark6

The Quad7 botnet, also known as the 7777 and xlogin botnets, has gained notoriety for utilizing compromised routers to launch...
Read more 0
GeoServer RCE vulnerability: a threat to geospatial data infrastructure
Vulnerability

GeoServer RCE vulnerability: a threat to geospatial data infrastructure

9 September 2024 dark6

GeoServer, an open-source Java-based server, enables the sharing and management of geospatial data. However, a critical vulnerability (CVE-2024-36401) has emerged,...
Read more 0