DoS vulnerability CVE-2024-56332 in Next.js, update now
Next.js, a popular React framework, has recently addressed a critical denial-of-service (DoS) vulnerability identified as CVE-2024-56332. This security flaw was…
Glutton: a new PHP backdoor
On April 29, 2024, XLab’s threat analysis system detected unusual activities linked to a new malware named Glutton, designed to…
Urgent: update your .NET installer link, new Microsoft issue
Microsoft has issued an urgent warning to .NET developers regarding the imminent shutdown of two critical domains used for installing…
Curl vulnerability exposes user credentials in redirects
A recently discovered vulnerability in cURL, identified as CVE-2024-11053, poses a significant risk by potentially exposing user credentials during HTTP…
Cryptojacking: protecting Docker and Kubernetes environments from new attacks
Cryptojacking—the unauthorized use of systems to mine cryptocurrency—has seen a troubling surge, with attackers increasingly exploiting misconfigured Docker and Kubernetes…
QNAP NAS vulnerabilities
QNAP NAS systems, widely used for data storage, have been flagged for several critical vulnerabilities that pose significant risks to…
Apache Tomcat vulnerability (CVE-2024-38286)
A severe vulnerability has emerged in Apache Tomcat, a widely used Java application server. Identified as CVE-2024-38286, this flaw poses…
Windows MiniFilter vulnerability: a threat to EDR security
Endpoint Detection and Response (EDR) solutions are essential for modern cybersecurity defenses. However, research has revealed a vulnerability in Windows…