Aggregator

Submit #545934 / VDB-303161

CVE-2024-20439, a static credential vulnerability in the Cisco Smart Licensing Utility, is being exploited by attackers in the wild, CISA has confirmed on Monday by adding the flaw to its Known Exploited Vulnerabilities catalog. Cisco has followed up with a confirmation by updating the security advisory covering CVE-2024-20439 and CVE-2024-20440, an information disclosure flaw in the same software. “In March 2025, the Cisco Product Security Incident Response Team (PSIRT) became aware of attempted exploitation of … More →

The post Attackers are leveraging Cisco Smart Licensing Utility static admin credentials (CVE-2024-20439) appeared first on Help Net Security.

Cisco has disclosed a significant vulnerability in its AnyConnect VPN Server for Meraki MX and Z Series devices, allowing authenticated attackers to trigger denial-of-service (DoS) conditions. The flaw (CVE-2025-20212) stems from an uninitialized variable during SSL VPN session establishment and affects over 20 hardware models across enterprise networks. Vulnerability Overview Exploiting this bug requires valid VPN credentials. Attackers can […]

The post Cisco AnyConnect VPN Server Vulnerability Allows Attackers to Trigger DoS appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Submit #545895 / VDB-303160

Kaspersky Lab has uncovered a new version of the Triada Trojan, a sophisticated malware targeting Android devices. This variant has been found pre-installed in the firmware of counterfeit smartphones mimicking popular models, often sold at discounted prices through unauthorized online stores. The malware poses significant risks to users, with more than 2,600 cases reported globally, […]

The post New Trinda Malware Targets Android Devices by Replacing Phone Numbers During Calls appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Submit #545894 / VDB-303159

Media-rich applications require image and video pipelines that integrate seamlessly with the rest of your technology stack. Here’s how the Images binding enables you to build more flexible workflows.

The cybercriminal uses the service of Proton66, an infamous Russian-based bulletproof hosting provider, to deploy malware

A recent cyberattack campaign leveraging the DarkCloud stealer has been identified, targeting Spanish companies and local offices of international organizations across various industries. The attackers are spoofing a legitimate Spanish company specializing in mountain and skiing equipment to deliver malicious payloads via email. The emails, which use billing-themed social engineering tactics, feature subjects such as […]

The post DarkCloud Stealer Uses Weaponized .TAR Archives to Target Organizations and Steal Passwords appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Submit #545893 / VDB-303158

Submit #545883 / VDB-303157

Submit #545867 / VDB-303146

Submit #545866 / VDB-303156

Researchers from Bishop Fox have successfully exploited CVE-2024-53704, an authentication bypass vulnerability that affects SonicWall firewalls. This critical flaw allows remote attackers to hijack active SSL VPN sessions, enabling unauthorized network access without requiring user credentials. If left unpatched, the vulnerability poses significant risks to organizations relying on SonicWall devices for their network security. CVE-2024-53704: The […]

The post SonicWall Firewall Vulnerability Enables Unauthorized Access appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Seashell Blizzard, also known as APT44, Sandworm, and Voodoo Bear, has emerged as a sophisticated adversary targeting critical sectors worldwide. Associated with Russia’s Military Intelligence Unit 74455 (GRU), this group has been active since at least 2009, focusing on sectors such as energy, telecommunications, government, military, manufacturing, and retail. Their operations often involve long-term access […]

The post Russian Seashell Blizzard Targets Organizations Using Custom-Built Hacking Tools appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

EvilCorp, a sanctioned Russia-based cybercriminal enterprise, has been observed collaborating with RansomHub, one of the most active ransomware-as-a-service (RaaS) operations. This partnership has heightened the threat landscape, as both entities leverage advanced tools and techniques to target organizations across the globe. EvilCorp: A History of Cybercrime EvilCorp, led by Maksim Yakubets, has long been notorious […]

The post EvilCorp and RansomHub Collaborate to Launch Worldwide Attacks on Organizations appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Web applications are facing a growing challenge from “gray bots,” a category of automated programs that exploit generative AI to scrape vast amounts of data. Unlike traditional malicious bots, gray bots occupy a middle ground, engaging in activities that, while not overtly harmful, often raise ethical and operational concerns. Recent research highlights the scale of […]

The post AI-Powered Gray Bots Target Web Applications with Over 17,000 Requests Per Hour appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability was found in Plus Addons for Elementor Plugin up to 5.4.2 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Countdown Widget. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-3199. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in Happy Addons for Elementor Plugin up to 3.10.6 on WordPress. It has been classified as problematic. Affected is an unknown function of the component Calendly Widget. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-3890. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability classified as problematic was found in Plus Addons for Elementor Plugin up to 5.4.2 on WordPress. This vulnerability affects unknown code of the component Custom Attributes Handler. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-3197. The attack can be initiated remotely. There is no exploit available.