Multiple critical vulnerabilities have been discovered in the Cisco AnyConnect VPN server, affecting Cisco Meraki MX and Z Series Teleworker Gateway devices. These vulnerabilities could allow unauthenticated, remote attackers to cause a Denial of Service (DoS) condition on the affected…
QNAP Systems, Inc. has released an important security update for its QuRouter devices, addressing a recently discovered zero-day vulnerability. This vulnerability, found during the Pwn2Own 2024 competition, could potentially allow unauthorized access to the system. However, the issue has been…
A critical vulnerability, CVE-2024-20481, was recently discovered in the Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) systems that are exploited via VPN. This vulnerability is actively exploited by hackers in real cyber attacks. This poses a major…
FortiManager is Fortinet’s network security infrastructure management product, which is used by many organizations to manage and monitor security policies. With it, enterprises can monitor and update their security policies from one place. Therefore, a vulnerability in the FortiManager system…
In recent years, cyber attacks have become more sophisticated and new tactics are being used to steal login credentials. Callback phishing attacks are one such modern tactic. These attacks are different from traditional forms of phishing because they use more…
Zimbra is an open source email and collaboration platform used by many companies and organizations around the world. But open source systems need to be constantly monitored for security, as they are open to new vulnerabilities and hacker attacks. CVE-2024-45519,…
Several critical vulnerabilities have recently been discovered in the Common UNIX Printing System (CUPS), which is widely used in Linux and other UNIX-like operating systems. These vulnerabilities increase the system’s potential security threats, including vulnerabilities that could allow remote code…
A serious security vulnerability has been discovered in The Events Calendar plugin, one of the popular WordPress plugins. This vulnerability is of the SQL injection type and has the number CVE-2024-8275. The vulnerability affects all versions of the plugin 6.6.4…
Apache Tomcat is the most widely used Java servlet in the world (A Java servlet is a software component written in the Java programming language that allows interaction with web servers (such as Apache Tomcat). Servlets are dynamic web applications…
Central Asia has become the target of a new malicious Android malware campaign called Ajina.Banker. This malware was discovered in May 2024. Ajina.Banker has been distributed to users since November 2023, and researchers have identified about 1,400 unique variants of…