The recent detection of a critical vulnerability in Adobe ColdFusion versions 2023 and 2021 has heightened concerns surrounding the security of web applications utilizing this software. Tracked as CVE-2024-53961, this flaw leverages a path traversal weakness, which permits unauthorized access to
The Federal Bureau of Investigation recently issued a serious warning about the HiatusRAT malware, which has been exploiting vulnerabilities in web cameras and DVR systems. Active since mid-2022, HiatusRAT has primarily targeted high-bandwidth routers, resulting in a significant number of
In an alarming development, two major vulnerabilities within VMware vCenter Server have been actively exploited following an initial attempt by Broadcom to patch these issues. Initially, patches were released on September 17th to address the flaws, identified as CVE-2024-38812 and CVE-2024-38813.
In a concerning revelation, cybersecurity agencies from the UK, US, Canada, Australia, and New Zealand, collectively known as the Five Eyes, have published a list of the 15 most exploited software vulnerabilities in 2024. These vulnerabilities underscore the prevalent issue of zero-day flaws and
In a concerning development for cybersecurity, a significant vulnerability in Palo Alto Networks' Expedition tool has come under active exploitation by attackers, emphasizing the critical need for immediate action. This top-priority security flaw, identified as CVE-2024-5910, involves missing
In recent months, the rapid increase in crypto scams has raised alarms within the blockchain community, signaling a troubling trend despite notable advancements in security measures. Blockchain security firm CertiK’s latest report has highlighted the alarming rise in phishing attacks and private
