Alerts & Advisories

Cryptographic Vulnerability in PuTTY

April 19, 2024

The PuTTy Project has released a security update to address a cryptographic vulnerability (CVE-2024-31497) in PuTTY.Successful exploitation of this vulnerability...

Critical Vulnerabilities in Ivanti Avalanche

April 17, 2024

Ivanti has released security updates addressing two critical vulnerabilities (CVE-2024-24996 and CVE-2024-29204) in their Avalanche mobile device management (MDM) products...

Active Exploitation of Critical Vulnerability in Palo Alto Networks PAN-OS Software

April 12, 2024

Palo Alto Networks has disclosed a critical vulnerability (CVE-2024-3400) affecting their PAN-OS software used in its GlobalProtect gateways. The vulnerability...

Active Exploitation of Vulnerabilities in D-Link Products

April 12, 2024

D-Link has disclosed two vulnerabilities (CVE-2024-3272 & CVE-2024-3273) in their network-attached storage (NAS) devices. These vulnerabilities are reportedly being actively...

Critical Vulnerability in Rust Standard Library

April 11, 2024

Rust has released an update to address a critical vulnerability (CVE-2024-24576) affecting the Rust standard library. The vulnerability has a...

Apr 2024 Monthly Patch

April 11, 2024

Microsoft has released security patches to address multiple vulnerabilities in their software and products.The vulnerabilities that have been classified as...

Multiple Vulnerabilities in HTTP/2 Protocol

April 10, 2024

A security researcher has disclosed a new Denial-of-Service (DoS) attack method which exploits HTTP/2 protocols affected by a class of...

Critical Vulnerability in WordPress LayerSlider Plugin

April 4, 2024

LayerSlider has released updates to address a critical vulnerability (CVE-2024-2879) affecting their LayerSlider plugin for WordPress. The vulnerability has a...

Multiple High Severity Vulnerabilities in Cisco IOS and IOS XE Software

April 1, 2024

Cisco has released updates addressing multiple high severity vulnerabilities (CVE-2024-20311, CVE-2024-20314, CVE-2024-20307, CVE-2024-20308, CVE-2024-20259, CVE-2024-20303) affecting their IOS and IOS...

Critical Vulnerability in XZ Utils

April 1, 2024

Security researchers have disclosed a critical vulnerability (CVE-2024-3094) in XZ Utils used in Linux distributions. The vulnerability has a Common...

Vulnerability Affecting User Datagram Protocol Implementations

March 28, 2024

Security researchers have disclosed a vulnerability (CVE-2024-2169) affecting implementations of User Datagram Protocol (UDP).Successful exploitation of the vulnerability could allow...

Ongoing Malware Campaign Targeting WordPress Websites

March 27, 2024

There are reports of an ongoing malware campaign, Sign1, targeting WordPress sites. The campaign entails attackers gaining access to WordPress...

Active Exploitation of Critical Vulnerability in JetBrains TeamCity On-Premises

March 22, 2024

JetBrains has released updates addressing a critical vulnerability (CVE-2024-27198) affecting JetBrains TeamCity On-Premises. The vulnerability is reportedly being actively exploited and...

Critical Vulnerabilities in Unitronics Products

March 20, 2024

Unitronics has released security updates to address critical vulnerabilities (CVE-2024-27767 and CVE-2024-27768) affecting their Unistream Unilogic software, an interface for...

Critical Vulnerabilities in Fortinet Products

March 14, 2024

Fortinet has released security updates to address critical vulnerabilities (CVE-2023-48788, CVE-2023-42789 and CVE-2023-42790) affecting their FortiClient Enterprise Management Server (EMS),...

Mar 2024 Monthly Patch

March 13, 2024

Microsoft has released security patches to address multiple vulnerabilities in their software and products.The vulnerabilities that have been classified as...

High-Severity Vulnerability in Apple Products

March 1, 2024

Apple has released security updates to address a high-severity vulnerability (CVE-2024-23204) affecting their Shortcuts app in their products.The Apple Shortcuts...

High-Severity Vulnerability in Apple Products

February 29, 2024

Apple has released security updates to address a high-severity vulnerability (CVE-2024-23204) affecting their Shortcuts app in their products.The Apple Shortcuts...

Active Exploitation of Multiple Vulnerabilities in ConnectWise ScreenConnect Software

February 27, 2024

ConnectWise has released security updates addressing multiple vulnerabilities (CVE-2024-1708 and CVE-2024-1709) affecting their ScreenConnect software. The vulnerabilities are reportedly being...

Active Exploitation of Multiple Vulnerabilities in ConnectWise ScreenConnect Software

February 26, 2024

ConnectWise has released security updates addressing multiple vulnerabilities (CVE-2024-1708 and CVE-2024-1709) affecting their ScreenConnect software. The vulnerabilities are reportedly being...

Multiple Vulnerabilities in VMware Enhanced Authentication Plug-in

February 23, 2024

VMware has released mitigating measures addressing multiple vulnerabilities (CVE-2024-22245 and CVE-2024-22250) impacting their Enhanced Authentication Plug-in (EAP).The vulnerabilities are:• CVE-2024-22245:...

Active Exploitation of Critical Vulnerability in WordPress Bricks Plug-in

February 23, 2024

WordPress has released security updates to address a critical vulnerability (CVE-2024-25600) impacting their Bricks Builder Plug-in. The vulnerability has a...

Active Exploitation of Critical Vulnerability in WordPress Bricks Plug-in

February 22, 2024

WordPress has released security updates to address a critical vulnerability (CVE-2024-25600) impacting their Bricks Builder Plug-in. The vulnerability has a...

Multiple Vulnerabilities in VMware Enhanced Authentication Plug-in

February 22, 2024

Alerts & Advisories

Cryptographic Vulnerability in PuTTY

Critical Vulnerabilities in Ivanti Avalanche

Active Exploitation of Critical Vulnerability in Palo Alto Networks PAN-OS Software

Active Exploitation of Vulnerabilities in D-Link Products

Critical Vulnerability in Rust Standard Library

Apr 2024 Monthly Patch

Multiple Vulnerabilities in HTTP/2 Protocol

Critical Vulnerability in WordPress LayerSlider Plugin

Multiple High Severity Vulnerabilities in Cisco IOS and IOS XE Software

Critical Vulnerability in XZ Utils

Vulnerability Affecting User Datagram Protocol Implementations

Ongoing Malware Campaign Targeting WordPress Websites

Active Exploitation of Critical Vulnerability in JetBrains TeamCity On-Premises

Critical Vulnerabilities in Unitronics Products

Critical Vulnerabilities in Fortinet Products

Mar 2024 Monthly Patch

High-Severity Vulnerability in Apple Products

High-Severity Vulnerability in Apple Products

Active Exploitation of Multiple Vulnerabilities in ConnectWise ScreenConnect Software

Active Exploitation of Multiple Vulnerabilities in ConnectWise ScreenConnect Software

Multiple Vulnerabilities in VMware Enhanced Authentication Plug-in

Active Exploitation of Critical Vulnerability in WordPress Bricks Plug-in

Active Exploitation of Critical Vulnerability in WordPress Bricks Plug-in

Multiple Vulnerabilities in VMware Enhanced Authentication Plug-in

[FUNKSEC] – Ransomware Victim: gtsportcarrental[.]com

CVE Alert: CVE-2023-31279

CVE Alert: CVE-2024-11349

CVE Alert: CVE-2024-12846

CVE Alert: CVE-2024-11196

You may have missed