Recent Security News
-
October 10, 2023 at 11:55AM – New critical Citrix NetScaler flaw exposes ‘sensitive’ data
October 10, 2023 at 11:55AM Citrix NetScaler ADC and NetScaler Gateway are affected by two vulnerabilities, CVE-2023-4966 and CVE-2023-4967. The first flaw allows for the disclosure of sensitive information, while the second can lead to denial of service. Upgrading to the recommended fixed versions is advised. Version 12.1 has reached end-of-life and no longer receives…
-
October 10, 2023 at 11:54AM – Mirai Variant IZ1H9 Adds 13 Exploits to Arsenal
October 10, 2023 at 11:54AM A variant of the Mirai botnet, known as IZ1H9, has updated its tools with 13 new exploits targeting vulnerabilities in IoT devices from various manufacturers, including D-Link, TP-Link, Zyxel, and others. This variant is highly active in exploiting these vulnerabilities for distributed denial-of-service (DDoS) attacks. Fortinet observed thousands of attack…
-
October 10, 2023 at 11:30AM – HTTP/2 Rapid Reset Zero-Day Vulnerability Exploited to Launch Record DDoS Attacks
October 10, 2023 at 11:30AM Amazon Web Services (AWS), Cloudflare, and Google have taken measures to address a new distributed denial-of-service (DDoS) attack technique called HTTP/2 Rapid Reset. The attacks, which exploited a flaw in the HTTP/2 protocol, affected the companies’ cloud infrastructures. The attacks overloaded servers by sending and canceling requests in quick succession,…
-
October 10, 2023 at 10:33AM – Fresh curl tomorrow will patch ‘worst’ security flaw in ages
October 10, 2023 at 10:33AM Curl version 8.4.0 is set to be released tomorrow, addressing two security flaws. One of the flaws is considered the worst security flaw in curl in a long time. The update will address CVE-2023-38545, affecting both libcurl and the curl tool, and CVE-2023-38546, affecting libcurl only. The update does not…