Secure Bulletin Navigating the cyber sea with knowledge
Home > Categoria > Vulnerability
Latest news

Critical Cisco vulnerability threatens Web-Based management interfaces

14 September 2024  |  dark6  |  Vulnerability

Cisco has recently disclosed a severe vulnerability (CVE-2024-20381) impacting the JSON-RPC API feature used by various web-based management interfaces in its products. This flaw poses a significant risk...

>> read more

Cybersecurity alert for Small and Mid-sized Businesses: CosmicBeetle threat actor on the rise

14 September 2024  |  dark6  |  Vulnerability

Small and mid-sized businesses (SMBs) are increasingly becoming targets of cybercriminals due to weaker security measures and lack of cybersecurity awareness. Cyberattackers often exploit vulnerabilities in outdated software...

>> read more

Urgent: GitLab warns of critical vulnerability, advises immediate patching

13 September 2024  |  dark6  |  Vulnerability

GitLab, a popular DevOps platform, has recently released a critical security update to address several high-severity vulnerabilities. Organizations using GitLab must prioritize upgrading to the latest patched versions...

>> read more

Critical Active Directory certificate services vulnerabilities: implications and mitigation strategies

12 September 2024  |  dark6  |  Vulnerability

Microsoft’s Active Directory Certificate Services (AD CS), a PKI implementation in Active Directory environments, has been found to contain critical vulnerabilities that can enable attackers to gain long-term...

>> read more

Critical vulnerability compromises the security of .MOBI top-level domain

12 September 2024  |  dark6  |  Vulnerability

A recent vulnerability discovery has exposed a glaring security flaw in the .MOBI domain name ecosystem. This vulnerability, stemming from an expired WHOIS server domain, has allowed a...

>> read more

Threat landscape: EV charging infrastructure under attack

12 September 2024  |  dark6  |  Vulnerability

As electric vehicles (EVs) gain traction, their reliance on interconnected systems and widespread public charging infrastructure introduces significant cybersecurity risks. Vulnerabilities inherent in EV software and charging stations...

>> read more

Browser-based credential theft: a growing threat

12 September 2024  |  dark6  |  Vulnerability

In the evolving cybersecurity landscape, web browsers have become a primary target for cybercriminals seeking to steal users’ credentials. This shift has significant implications for individuals and organizations...

>> read more

Critical Zero-Day vulnerability in Microsoft’s App Control

11 September 2024  |  dark6  |  Vulnerability

Microsoft has released a critical security update to address an actively exploited zero-day vulnerability affecting its Windows Smart App Control (SAC) and SmartScreen security features. This vulnerability has...

>> read more