EHA
Exploit Cisco IOS Zero-day

Exploit Released for Cisco IOS XE Zero-day Vulnerability

Cisco was reported with a critical vulnerability last week, which has been actively exploited by threat actors in the wild. The vulnerability was assigned with the CVE-2023-20198 and was given a severity rating of...
Apple Urgently Patches Zero-day Flaw Exploited in the Wild

Apple Urgently Patches Zero-day Flaw Exploited in the Wild

Apple has released an emergency security update for patching two actively exploited zero-day vulnerabilities on iOS. The vulnerabilities were discovered earlier this month and are tracked as CVE-2023-42916, and CVE-2023-42917 affected many Apple products. The...
SysAid Server Zero-Day

MOVEit Hackers Turn to SysAid Servers Zero-Day Vulnerability

As previously reported, SysAid disclosed a zero-day issue affecting on-premises SysAid servers. The vulnerability was found to be a path traversal vulnerability and was given CVE-2023-47426. Additionally, SysAid stated that there were reports of Lace...
Chrome zero-day

Chrome zero-day – Update Now to Protect from Wildly Exploited Vulnerability

Kaspersky technologies noticed a wave of ‘highly targeted attacks’ against multiple companies during April 2021. As a result of the analysis, all these attacks exploited a chain of Google Chrome and Microsoft Windows zero-day...
Apple Released Security Updates

Apple Released Emergency Security Updates to Fix Two Zero-Day Flaw Actively Exploited

There have been two zero-day vulnerabilities previously exploited by hackers in order to gain access to several Apple devices:- iPhonesiPadsMacs However, both of these issues have been addressed by Apple's emergency security updates released recently. The...
Citrix Gateway Zero-day

Hackers Exploit Citrix ADC and Citrix Gateway Zero-day Vulnerability to Gain Access to Corporate...

The Citrix Gateway and Citrix ADC both contain vulnerabilities that have been discovered recently. In short, there is a critical zero-day vulnerability identified as "CVE-2022-27518" by Citrix in both of its products that we...
SideCopy APT group Exploiting WinRAR Zero-Day to Deliver Ares RAT

SideCopy APT group Exploiting WinRAR Zero-Day to Deliver Ares RAT

SideCopy, the Pakistani-based threat actor, has been using the WinRAR vulnerability (CVE-2023-38831) to target Indian government entities for delivering multiple RATs (Remote Access Trojans) like AllaKore RAT, Ares RAT, and DRat. The threat actor has...
Hackers Using MSHTML 0-Days Exploit To Deploy Cobalt Strike Beacon On Windows

Hackers Using MSHTML 0-Days Exploit To Deploy Cobalt Strike Beacon On Windows

Microsoft announced a targeted phishing campaign that they have detected recently, and this campaign is exploiting MSHTML 0-Days exploit to deploy Cobalt Strike Beacon on Windows. But, right now at this moment, they have already...
Chrome zero-day

Emergency Chrome Update to Fix zero-day Exploited in the Wild

Google recently updated the Chrome browser and released the latest version Chrome 96.0.4664.110 with the patch for a critical zero-day vulnerability that was exploited in the wild and other four security flaws. This latest version...
iPhone Zero-Click, Zero-Day Exploited in the Wild to Install Spyware

iPhone Zero-Click, Zero-Day Flaw Exploited in the Wild to Install Malware

Researchers discovered an actively exploited zero-click vulnerability that was part of an exploit chain aimed at deploying NSO Group's Pegasus malware. One of the most potent tools now on the market is Pegasus, which is...

Managed WAF

Website

Latest News