Zero-Day

ESET researchers recently discovered a critical zero-day vulnerability in the Telegram messaging app for Android, potentially exposing millions of users to malicious attacks. The exploit, dubbed "EvilVideo," allowed attackers to disguise harmful Android payloads as...

Hackers target legitimate Remote Monitoring and Management (RMM) tools as they provide powerful, trusted access to systems and networks. This can facilitate the widespread and efficient deployment of malware across an organization's infrastructure. Cybersecurity researchers at...

The growing tension and global elections in the past year have presented major challenges to internet security, raising the volume of malicious traffic. Cloudflare cybersecurity researchers presented their Q1 2024 Application Security Report, which illustrated...

Hackers weaponize shortcut files because they are an inconspicuous way to execute malicious code on a target system.  These files can be disguised as harmless icons but actually contain commands that, when clicked, launch harmful...

Check Point published an advisory regarding a critical vulnerability, CVE-2024-24919, which has since seen a surge in exploitation attempts. The vulnerability, rated with a CVSS score of 8.6, allows attackers to access sensitive information on...

A critical zero-day vulnerability, CVE-2024-24919, has been discovered in Check Point Security Gateways, enabling the IPSec VPN or Mobile Access blades. This vulnerability is actively exploited in the wild, posing a significant threat to...

A new threat has emerged on the darker corners of the internet. A threat actor has reportedly put up for sale a Remote Code Execution (RCE) 0-day exploit targeting various versions of Microsoft Outlook,...

Security researchers have uncovered four zero-day vulnerabilities within OpenVPN, the world's leading VPN solution. These vulnerabilities pose significant threats to millions of devices globally. These vulnerabilities, identified by the internal codename OVPNX, affect a wide...

Hackers target Cisco Firewalls due to their widespread use and the potential to exploit vulnerabilities to gain unauthorized access, steal data, and launch cyber attacks. Cisco Talos recently reported on a global campaign dubbed...

CrushFTP disclosed a zero-day vulnerability (CVE-2024-4040) affecting versions below 10.7.1 and 11.1.0. The vulnerability allows remote attackers with low privileges to bypass the VFS sandbox and read arbitrary files on the underlying filesystem.  It could...