Threat actors may have exploited a zero-day in older iPhones, Apple warns.
Microsoft fixed two zero-day bugs exploited in malware attacks.
Threat actors actively exploit JetBrains TeamCity flaws to deliver malware.
Raspberry Robin spotted using two new 1-day LPE exploits.
Multiple malware used in attacks exploiting Ivanti VPN flaws.
Ivanti warns of a new actively exploited zero-day.
Threat actors exploit Ivanti VPN bugs to deploy KrustyLoader Malware.
Threat actors exploit Apache ActiveMQ flaw to deliver the Godzilla Web Shell.
Malware exploits undocumented Google OAuth endpoint to regenerate Google cookies.
Barracuda fixed a new ESG zero-day exploited by Chinese group UNC4841.
Google addressed a new actively exploited Chrome zero-day.
Operation Blacksmith: Lazarus exploits Log4j flaws to deploy DLang malware.
Threat actors breached US govt systems by exploiting Adobe ColdFusion flaw.
Threat actors started exploiting critical ownCloud flaw CVE-2023-49103.
New InfectedSlurs Mirai-based botnet exploits two zero-days.
Threat actors actively exploit F5 BIG-IP flaws CVE-2023-46747 and CVE-2023-46748.
Threat actors have been exploiting CVE-2023-4966 in Citrix NetScaler ADC/Gateway devices since August.
Apple rolled out emergency updates to address 3 new actively exploited zero-day flaws.
Apple discloses 2 new actively exploited zero-day flaws in iPhones, Macs.
UNC4841 threat actors hacked US government email servers exploiting Barracuda ESG flaw.
This Cyber News was published on securityaffairs.com. Publication date: Mon, 27 May 2024 12:43:10 +0000