The Hacker News8m
Fortra Issues Patch for High-Risk FileCatalyst Workflow Security Vulnerability
Fortra has patched a critical security flaw in FileCatalyst Workflow, preventing remote admin access via a static password.
The Hacker News2h
APT-C-60 Group Exploit WPS Office Flaw to Deploy SpyGlace Backdoor
South Korean hackers exploit WPS Office flaw to deploy SpyGlace backdoor. APT-C-60 group targets Chinese users with ...
The Hacker News6h
BlackByte Ransomware Exploits VMware ESXi Flaw in Latest Attack Wave
BlackByte ransomware group exploits VMware vulnerability, uses vulnerable drivers in attacks. Cisco Talos reveals new tactics ...
The Hacker News9h
CISA Flags Critical Apache OFBiz Flaw Amid Active Exploitation Reports
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a critical security flaw affecting the ...
The Hacker News9h
New QR Code Phishing Campaign Exploits Microsoft Sway to Steal Credentials
New QR code phishing campaign abuses Microsoft Sway, posing risks to tech, finance, and manufacturing sectors.
The Hacker News12h
Critical WPML Plugin Flaw Exposes WordPress Sites to Remote Code Execution
A critical security flaw has been disclosed in the WPML WordPress multilingual plugin that could allow authenticated users to ...
The Hacker News12h
macOS Version of HZ RAT Backdoor Targets Chinese Messaging App Users
Discover how the HZ RAT backdoor is now targeting MacOS users of Chinese messaging apps, posing a new cybersecurity threat to ...
The Hacker News1d
Chinese Volt Typhoon Exploits Versa Director Flaw, Targets U.S. and Global IT Sectors
The China-nexus cyber espionage group tracked as Volt Typhoon has been attributed with moderate confidence to the zero-day ...
The Hacker News1d
Google Warns of CVE-2024-7965 Chrome Security Flaw Under Active Exploitation
Google has revealed that a security flaw that was patched as part of a software update rolled out last week to its Chrome ...
The Hacker News1d
Microsoft Fixes ASCII Smuggling Flaw That Enabled Data Theft from Microsoft 365 Copilot
Details have emerged about a now-patched vulnerability in Microsoft 365 Copilot that could enable the theft of sensitive user ...
The Hacker News1d
CTEM in the Spotlight: How Gartner's New Categories Help to Manage Exposures
Want to know what's the latest and greatest in SecOps for 2024? Gartner's recently released Hype Cycle for Security ...
The Hacker News2d
SonicWall Issues Critical Patch for Firewall Vulnerability Allowing Unauthorized Access
SonicWall releases critical security updates to fix a vulnerability impacting its firewalls (CVE-2024-40766, CVSS score: 9.3) ...