News

Chinese APT41 Linked to WyrmSpy and DragonEgg Surveillanceware

July 20, 2023

The Chinese espionage group APT41 (AKA Double Dragon, BARIUM and Winnti) has been linked to the sophisticated Android surveillanceware known...

Critical API Security Gaps Found in Financial Services

July 20, 2023

An industry-focused report on application programming interface (API) security has revealed a critical state of affairs in the financial services...

VMWare Aria Operations for Networks Multiple Vulnerabilities

July 20, 2023

Multiple vulnerabilities were identified in VMWare Aria Operations for Networks. A remote attacker could exploit some of these vulnerabilities to...

Apple Products Multiple Vulnerabilities

July 20, 2023

Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger remote code...

VMWare Aria Operations for Networks Multiple Vulnerabilities

July 20, 2023

Multiple vulnerabilities were identified in VMWare Aria Operations for Networks. A remote attacker could exploit some of these vulnerabilities to...

Samsung Products Multiple Vulnerabilities

July 20, 2023

Multiple vulnerabilities were identified in Samsung Products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of...

Microsoft Monthly Security Update (July 2023)

July 20, 2023

Microsoft has released monthly security update for their products: Vulnerable ProductRisk LevelImpactsNotesWindows High RiskElevation of Privilege Denial of Service Information Disclosure...

Android Multiple Vulnerabilities

July 20, 2023

Multiple vulnerabilities were identified in Android. A remote attacker could exploit some of these vulnerabilities to trigger denial of service...

Adobe ColdFusion Remote Code Execution Vulnerability

July 20, 2023

A vulnerability was identified in Adobe ColdFusion. A remote attacker could exploit this vulnerability to trigger remote code execution on...

Citrix Products Multiple Vulnerabilities

July 20, 2023

Multiple vulnerabilities were identified in Citrix Products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of...

Ghostscript Remote Code Execution Vulnerability

July 20, 2023

A vulnerability was identified in Ghostscript. A remote attacker could exploit this vulnerability to trigger remote code execution on the...

Apple Products Remote Code Execution Vulnerability

July 20, 2023

A vulnerability was identified in Apple Products. A remote attacker could exploit this vulnerability to trigger remote code execution on...

US-CERT Vulnerability Summary for the Week of July 10, 2023

July 19, 2023

High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoelra -- parkmatikImproper Neutralization of Special Elements used in an SQL Command...

Apple Products Multiple Vulnerabilities

July 19, 2023

Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger remote code...

VMWare Aria Operations for Networks Multiple Vulnerabilities

July 19, 2023

Multiple vulnerabilities were identified in VMWare Aria Operations for Networks. A remote attacker could exploit some of these vulnerabilities to...

Microsoft Monthly Security Update (July 2023)

July 19, 2023

Microsoft has released monthly security update for their products: Vulnerable ProductRisk LevelImpactsNotesWindows High RiskElevation of Privilege Denial of Service Information Disclosure...

VMWare Aria Operations for Networks Multiple Vulnerabilities

July 19, 2023

Multiple vulnerabilities were identified in VMWare Aria Operations for Networks. A remote attacker could exploit some of these vulnerabilities to...

Android Multiple Vulnerabilities

July 19, 2023

Multiple vulnerabilities were identified in Android. A remote attacker could exploit some of these vulnerabilities to trigger denial of service...

Samsung Products Multiple Vulnerabilities

July 19, 2023

Multiple vulnerabilities were identified in Samsung Products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of...

Citrix Products Multiple Vulnerabilities

July 19, 2023

Multiple vulnerabilities were identified in Citrix Products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of...

Ghostscript Remote Code Execution Vulnerability

July 19, 2023

A vulnerability was identified in Ghostscript. A remote attacker could exploit this vulnerability to trigger remote code execution on the...

Adobe ColdFusion Remote Code Execution Vulnerability

July 19, 2023

A vulnerability was identified in Adobe ColdFusion. A remote attacker could exploit this vulnerability to trigger remote code execution on...

Apple Products Remote Code Execution Vulnerability

July 19, 2023

A vulnerability was identified in Apple Products. A remote attacker could exploit this vulnerability to trigger remote code execution on...

Citrix ADC and Citrix Gateway Security Bulletin for CVE-2023-3519, CVE-2023-3466, CVE-2023-3467

July 19, 2023

Description of Problem Multiple vulnerabilities have been discovered in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway)....

News

Chinese APT41 Linked to WyrmSpy and DragonEgg Surveillanceware

Critical API Security Gaps Found in Financial Services

VMWare Aria Operations for Networks Multiple Vulnerabilities

Apple Products Multiple Vulnerabilities

VMWare Aria Operations for Networks Multiple Vulnerabilities

Samsung Products Multiple Vulnerabilities

Microsoft Monthly Security Update (July 2023)

Android Multiple Vulnerabilities

Adobe ColdFusion Remote Code Execution Vulnerability

Citrix Products Multiple Vulnerabilities

Ghostscript Remote Code Execution Vulnerability

Apple Products Remote Code Execution Vulnerability

US-CERT Vulnerability Summary for the Week of July 10, 2023

Apple Products Multiple Vulnerabilities

VMWare Aria Operations for Networks Multiple Vulnerabilities

Microsoft Monthly Security Update (July 2023)

VMWare Aria Operations for Networks Multiple Vulnerabilities

Android Multiple Vulnerabilities

Samsung Products Multiple Vulnerabilities

Citrix Products Multiple Vulnerabilities

Ghostscript Remote Code Execution Vulnerability

Adobe ColdFusion Remote Code Execution Vulnerability

Apple Products Remote Code Execution Vulnerability

Citrix ADC and Citrix Gateway Security Bulletin for CVE-2023-3519, CVE-2023-3466, CVE-2023-3467

[KAIROS] – Ransomware Victim: brownpacking[.]com

[RHYSIDA] – Ransomware Victim: Delmar International

[BLACKSUIT] – Ransomware Victim: JTEKT NORTH AMERICA

CISA: Fortinet Updates Guidance and Indicators of Compromise following FortiManager Vulnerability Exploitation

CISA: CISA Releases Four Industrial Control Systems Advisories

You may have missed