U.S. CISA adds Ivanti Connect Secure, Policy Secure, and ZTA Gateways flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Ivanti Connect Secure, Policy Secure, and ZTA Gateways flaw to its Kno
Aggregator
U.S. CISA adds Ivanti Connect Secure, Policy Secure, and ZTA Gateways flaw to its Known Exploited Vulnerabilities catalog
1 year 3 months ago
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Ivanti Connect Secure, Policy Secure, and ZTA Gateways flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added an Ivanti Connect Secure Vulnerability, tracked as CVE-2025-0282 (CVSS score: 9.0) to its Known Exploited Vulnerabilities (KEV) catalog. The vulnerability Ivanti impacted Ivanti Connect […]
Pierluigi Paganini
9.3 и 10: в популярном плагине для дизайна товаров обнаружена 0day-уязвимость
1 year 3 months ago
Исправления до сих пор нет. Как обезопасить свой сайт?
CVE-2013-2225 | GLPI up to 0.72.1 _predefined_fields deserialization (EDB-26530 / Nessus ID 70132)
1 year 3 months ago
A vulnerability was found in GLPI up to 0.72.1. It has been declared as critical. This vulnerability affects unknown code. The manipulation of the argument _predefined_fields leads to deserialization.
This vulnerability was named CVE-2013-2225. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
The (Almost) Forgotten Vulnerable Driver
1 year 3 months ago
Vulnerable Windows drivers remain one of the most exploited methods attackers use to gain access
Хакеры парализовали поставки Casio
1 year 3 months ago
Японский хранитель времени потерял счёт своим секретам.
EU Commission Liable for Breaching EU’s Own Data Protection Rules
1 year 3 months ago
A court has ruled the EU Commission infringed an individual’s right to the protection of their personal data by transferring their details to the US
CVE-2024-54006 & CVE-2024-54007: HPE Aruba 设备中的命令注入漏洞,公开提供 PoC
1 year 3 months ago
安全客
Nuovo formato per ClamAV disponibile tramite il flusso IoC del CERT-AGID
1 year 3 months ago
09/01/2025 ClamAVIoC Da oggi, il Fluss
MacOS 漏洞 CVE-2024-54527 曝光: 发布 TCC 旁路 PoC 漏洞利用代码
1 year 3 months ago
安全客
Под маской защитника: принципы Meta уступили место деньгам
1 year 3 months ago
ИИ видит всё, но зелёные купюры открывают слепые зоны.
Fortinet CISO Details ‘Phish-Free’ Phishing Scheme Using PayPal
1 year 3 months ago
A bad actor is using a Microsoft 365 test domain and a self-created distribution list to bypass traditional email protections and entice victims to hand over their PayPal account information in what Fortinet's CISO is calling a "phish-free" phishing campaign.
The post Fortinet CISO Details ‘Phish-Free’ Phishing Scheme Using PayPal appeared first on Security Boulevard.
Jeffrey Burt
Fortinet CISO Details ‘Phish-Free’ Phishing Scheme Using PayPal
1 year 3 months ago
A hacker is using Microsoft 365 test domains and distribution lists they create in a phishing ca
finidng ip/adress
1 year 3 months ago
橄榄球队Green Bay Packers网上商店遭黑客攻击 信用卡被盗
1 year 3 months ago
安全客
United Nations aviation agency hacked, recruitment database plundered
1 year 3 months ago
The United Nations' aviation agency has confirmed that hackers have compromised its systems, and a
零日警报:UNC5337 利用 Ivanti VPN 漏洞 CVE-2025-0282 进行间谍活动
1 year 3 months ago
安全客
【安全圈】Redis服务器曝2个严重的RCE漏洞,数百万系统面临风险
1 year 3 months ago
关键词安全漏洞在广泛使用的内存数据库Redis里,发现了两个严重漏洞,这可能使数百万系统面临拒绝服务(DoS)攻击和远程代码执行(RCE)的风险。这些漏洞被标记为CVE - 2024 - 51741和
【安全圈】2025年需要防范这五大恶意软件
1 year 3 months ago
关键词恶意软件2024年发生了多起引人注目的网络攻击,像戴尔和TicketMaster这样的大公司也都成为了数据泄露和其他基础设施攻击的受害者。到2025年,这样的趋势还将持续下去。正所谓知己知彼百战
【安全圈】俄罗斯 ISP 确认乌克兰黑客“摧毁”了其网络
1 year 3 months ago
关键词网络攻击乌克兰网络联盟组织成员乌克兰黑客周二宣布,他们已经入侵俄罗斯互联网服务提供商 Nodex 的网络并在窃取敏感文件后清除了被黑系统。“位于圣彼得堡的俄罗斯互联网提供商 Nodex 被彻底洗