Adobe has released critical security updates for multiple products
14 January 2025 securebulletin.com
Adobe has recently issued a critical security update addressing multiple vulnerabilities in Photoshop that could allow attackers to execute arbitrary...
Databreach
Nominet UK provider confirms cybersecurity incident after hack exploit on Ivanti VPN
13 January 2025 securebulletin.com
Nominet, the prominent U.K. domain registry responsible for managing .co.uk domains, has confirmed a significant cybersecurity incident linked to a...
Vulnerability
Hackers are exploiting new vulnerability on Ivanti
8 January 2025 securebulletin.com
Ivanti has issued a critical warning regarding the exploitation of a newly discovered vulnerability in its Connect Secure product, identified...
Vulnerability
Critical vulnerabilities in Oracle WebLogic Server and Mitel MiCollab, CISA warns
7 January 2025 securebulletin.com
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding critical vulnerabilities in Oracle WebLogic Server and...
Vulnerability
DoS vulnerability CVE-2024-56332 in Next.js, update now
4 January 2025 securebulletin.com
Next.js, a popular React framework, has recently addressed a critical denial-of-service (DoS) vulnerability identified as CVE-2024-56332. This security flaw was...
Spyware
Glutton: a new PHP backdoor
2 January 2025 securebulletin.com
On April 29, 2024, XLab’s threat analysis system detected unusual activities linked to a new malware named Glutton, designed to...
Vulnerability
Urgent: update your .NET installer link, new Microsoft issue
30 December 2024 securebulletin.com
Microsoft has issued an urgent warning to .NET developers regarding the imminent shutdown of two critical domains used for installing...
Vulnerability
Curl vulnerability exposes user credentials in redirects
16 December 2024 securebulletin.com
A recently discovered vulnerability in cURL, identified as CVE-2024-11053, poses a significant risk by potentially exposing user credentials during HTTP...
Malware
Cryptojacking: protecting Docker and Kubernetes environments from new attacks
15 December 2024 securebulletin.com
Cryptojacking—the unauthorized use of systems to mine cryptocurrency—has seen a troubling surge, with attackers increasingly exploiting misconfigured Docker and Kubernetes...
Vulnerability
QNAP NAS vulnerabilities
9 December 2024 dark6
QNAP NAS systems, widely used for data storage, have been flagged for several critical vulnerabilities that pose significant risks to...
Vulnerability
Apache Tomcat vulnerability (CVE-2024-38286)
24 September 2024 dark6
A severe vulnerability has emerged in Apache Tomcat, a widely used Java application server. Identified as CVE-2024-38286, this flaw poses...
Vulnerability
Windows MiniFilter vulnerability: a threat to EDR security
18 September 2024 dark6
Endpoint Detection and Response (EDR) solutions are essential for modern cybersecurity defenses. However, research has revealed a vulnerability in Windows...