Articles tagged "Vulnerability"

Found 953 articles

A significant security vulnerability in TrueConf, a video conferencing software, has been actively exploited in attacks on government networks in Southeast Asia. This vulnerability, identified as CVE-2026-3502, has a CVSS score of 7.8, indicating its severity. The flaw stems from a lack of integrity checks when updating the application, which allows attackers to deliver malicious updates to users. The campaign, named TrueChaos, is specifically targeting government entities, making it a serious concern given the sensitive nature of the information handled by these organizations. Immediate action is necessary to protect affected systems from further exploitation.

Read Original

OpenAI recently addressed a security vulnerability that allowed potential data theft through a single prompt in ChatGPT. According to Check Point, the issue stemmed from a DNS loophole, which could have been exploited by malicious users. This vulnerability could have led to unauthorized access to sensitive information, raising concerns about user privacy and data security. OpenAI's prompt fix is an important step in protecting users, especially as AI tools become more integrated into daily tasks. The incident underscores the need for continuous vigilance in securing AI systems against emerging threats.

Read Original

A recently discovered vulnerability in StrongSwan, a popular open-source VPN solution, allows unauthorized attackers to crash VPN services remotely. This integer underflow flaw affects StrongSwan versions released over the past 15 years, putting a wide range of users at risk. The vulnerability can be exploited without authentication, meaning attackers can target systems without any prior access. Organizations using StrongSwan should take this seriously, as it could lead to significant downtime and disruption of services. Users are advised to update their StrongSwan installations as soon as possible to mitigate the risk of exploitation.

Read Original

The Dutch Ministry of Finance has temporarily taken several systems offline, including its treasury banking portal, following the detection of a cyberattack two weeks ago. The attack prompted officials to act swiftly to protect sensitive financial data and ensure the integrity of their systems. While the investigation is ongoing, there are concerns about the potential impact on government operations and public trust in digital services. This incident underscores the vulnerability of even government institutions to cyber threats, highlighting the need for robust security measures in public sector technology. Users of the treasury banking portal are advised to stay informed about any updates regarding the situation and potential impacts on their access to services.

Read Original

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has mandated that federal agencies must patch their Citrix NetScaler appliances by Thursday to address a vulnerability that is currently being exploited by attackers. This flaw poses a significant risk as it allows unauthorized access and could lead to data breaches or further network compromises. Government agencies using Citrix NetScaler are particularly at risk, and timely action is essential to prevent potential exploitation. The urgency of this directive underscores the importance of maintaining up-to-date security measures in federal systems to protect sensitive information from malicious actors.

Read Original
Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse

Blog

A recently discovered vulnerability, identified as CVE-2026-20929, involves a Kerberos authentication relay attack that exploits CNAME records. This vulnerability can allow attackers to impersonate legitimate users and gain unauthorized access to sensitive systems. Organizations using Kerberos for authentication, particularly those with complex DNS configurations, are at risk. The implications are serious, as successful exploitation could lead to data breaches or unauthorized actions within an organization's network. Cybersecurity teams need to assess their systems for this vulnerability and take appropriate measures to secure their environments against potential attacks.

Read Original

CareCloud, a healthcare IT firm, has reported a data breach that compromised sensitive patient information. The incident led to a network disruption lasting about eight hours, affecting the firm's ability to provide services. While the specifics of the stolen data have not been disclosed, the breach raises significant concerns over patient privacy and data security in the healthcare sector. This incident underscores the ongoing vulnerability of healthcare organizations to cyberattacks, which can jeopardize both patient trust and the integrity of healthcare systems. Stakeholders are urged to enhance their cybersecurity measures to prevent similar occurrences in the future.

Read Original

A previously reported vulnerability in Fortinet's BIG-IP product, identified as CVE-2025-53521, has been reclassified from a denial-of-service (DoS) flaw to a remote code execution (RCE) vulnerability. This change indicates that the bug poses a much greater risk, allowing attackers to potentially execute arbitrary code on affected systems. Initially disclosed in October, this vulnerability is now known to be actively exploited, increasing the urgency for users to take action. Organizations using Fortinet BIG-IP devices should be especially vigilant, as this issue may compromise the security of their networks. Users are advised to implement necessary patches and monitor for unusual activity to safeguard their systems.

Read Original

A vulnerability in F5's BIG-IP software, initially categorized as a denial-of-service (DoS) issue, has been reclassified as a remote code execution (RCE) threat. This change comes after new findings revealed that attackers could exploit the flaw to execute arbitrary code on affected systems. Organizations using BIG-IP are at risk, as the vulnerability could allow unauthorized access and control over their systems. The reclassification raises concerns about the potential for severe exploitation, especially since the flaw is reportedly being actively targeted by attackers. Companies using F5 BIG-IP should take immediate action to protect their systems.

Read Original
15-Year-Old strongSwan Flaw Lets Attackers Crash VPNs via Integer Underflow

Hackread – Cybersecurity News, Data Breaches, AI and More

A 15-year-old vulnerability in the strongSwan VPN software has been identified, allowing attackers to crash VPN connections through an integer underflow bug. This flaw specifically impacts the EAP-TTLS plugin and affects multiple versions of strongSwan used globally. The issue can lead to significant disruptions for users relying on these VPNs for secure communications. Organizations should be aware of this vulnerability as it poses a risk to their network stability and security. Immediate action is recommended to address this flaw and prevent potential exploitation.

Read Original

A serious vulnerability has been discovered in the Telegram messaging app, which can reportedly be triggered by a corrupted sticker. This flaw has been assigned a CVSS score of 9.8, indicating its severity. However, Telegram has denied the existence of this vulnerability, which raises questions about user safety. If this flaw is real, it poses a significant risk to Telegram users, as it could allow attackers to exploit the app without any user interaction, making it a no-click attack. The situation is concerning, especially for those who rely on Telegram for secure messaging.

Read Original

A newly disclosed vulnerability in Telegram could allow attackers to execute code on users' devices without any interaction, making it a significant security risk. This flaw, identified by researcher Michael DePlante and tracked as ZDI-CAN-30207, has a CVSS score of 9.8, indicating its severity. Telegram has denied the existence of this issue, which raises concerns about user safety and device security. If confirmed, this vulnerability could affect millions of users who rely on Telegram for messaging. Users should remain vigilant and follow updates from Telegram regarding this potential threat.

Read Original

A serious SQL injection vulnerability, tracked as CVE-2026-21643, has been discovered in Fortinet's FortiClient Endpoint Management Server (EMS), which manages FortiClient endpoint agents across multiple platforms. This vulnerability is currently being actively exploited, as reported by Defused Cyber, a firm that specializes in threat intelligence. Although it has not yet been listed on CISA’s Known Exploited Vulnerabilities (KEV) list, the ongoing attacks pose significant risks to organizations using FortiClient EMS. Companies should take immediate action to assess their systems and implement necessary security measures to safeguard against potential breaches. The situation emphasizes the need for vigilance in monitoring and securing endpoint management solutions.

Read Original

The UK's National Cyber Security Centre (NCSC) has alerted organizations about a serious vulnerability in the F5 BIG-IP Access Policy Manager (APM). This flaw allows attackers to execute remote code without authentication, posing a significant risk to affected systems. Companies using F5 BIG-IP APM could be compromised if they do not take immediate action. The NCSC is urging organizations to implement mitigation measures to protect their networks. This vulnerability underscores the necessity for timely updates and vigilance in cybersecurity practices.

Read Original

F5 Networks has escalated the severity of a vulnerability in its BIG-IP Application Policy Manager (APM) from a denial-of-service issue to a critical remote code execution flaw. This vulnerability allows attackers to exploit unpatched devices and deploy webshells, which can give them unauthorized access to systems. Organizations using affected versions of BIG-IP are urged to apply the necessary patches immediately to prevent potential breaches. The exploitation of this flaw poses a significant risk, especially for businesses relying on BIG-IP for application delivery and security. With reports of active attacks already in progress, it is crucial for users to take swift action to secure their environments.

Read Original
PreviousPage 36 of 64Next