#ZeroDayFlaws

Apple Releases Urgent Updates to Patch Actively Exploited Zero-Day Vulnerabilities

November 20, 2024 by Xynik

November 20, 2024 at 12:18AM Apple has released security updates for multiple operating systems to fix two actively exploited zero-day vulnerabilities: CVE-2024-44308, allowing arbitrary code execution, and CVE-2024-44309, enabling cross-site scripting (XSS) attacks. Users are urged to update their devices promptly to mitigate security risks. **Meeting Takeaways: November 20, 2024 – Security Updates on Zero-Day … Read more

Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 89 flaws

November 13, 2024 by Xynik

November 13, 2024 at 11:36AM Microsoft’s November 2024 Patch Tuesday addressed 89 vulnerabilities, including four zero-days, with two actively exploited. Key fixes involve critical flaws in remote code execution and privilege escalation. Other notable updates were shared by Adobe, Cisco, and Google. Comprehensive vulnerability details are outlined in the full report. ### Meeting Takeaways – … Read more

Google fixes two Android zero-days used in targeted attacks

November 5, 2024 by Xynik

November 5, 2024 at 09:34AM Google’s November security updates fixed two actively exploited Android zero-day vulnerabilities, CVE-2024-43047 and CVE-2024-43093, among 51 flaws. The high-severity issues affect Qualcomm components and Android Framework, potentially linked to spyware attacks. Users are urged to update their devices for improved security, especially those running outdated versions. ### Meeting Takeaways: November … Read more

China-linked APT17 Targets Italian Companies with 9002 RAT Malware

July 17, 2024 by Xynik

July 17, 2024 at 05:06AM APT17, a China-linked threat actor, targeted Italian companies and government entities using a variant of known malware, 9002 RAT. Two attacks occurred on June 24 and July 2, 2024, leveraging spear-phishing lures to prompt victims to download an MSI installer for Skype for Business, which triggered the execution of 9002 … Read more

China-Linked Hackers Suspected in ArcaneDoor Cyberattacks Targeting Network Devices

May 6, 2024 by Xynik

May 6, 2024 at 10:05AM A cyber espionage campaign dubbed ArcaneDoor targeted perimeter network devices from various vendors, possibly linked to China. The attacks involved deploying custom malware and exploiting flaws in Cisco devices. The threat actor’s interest in Microsoft Exchange servers and other vendor devices suggests a Chinese involvement. Additionally, a malware known as … Read more

Ivanti fixes VPN gateway vulnerability allowing RCE, DoS attacks

April 3, 2024 by Xynik

April 3, 2024 at 01:31PM Ivanti, an IT security software company, has released patches for multiple high-severity security vulnerabilities in its Connect Secure and Policy Secure gateways. Attackers can exploit these flaws for remote code execution and DoS attacks. The U.S. CISA has issued an emergency directive to secure Ivanti systems following zero-day attacks. Thousands … Read more

CISA orders federal agencies to disconnect Ivanti VPN appliances by Saturday

February 1, 2024 by Xynik

February 1, 2024 at 08:52AM CISA has directed U.S. federal agencies to disconnect vulnerable Ivanti Connect Secure or Policy Secure VPN appliances due to exploited bugs. Ivanti is targeted in attacks using zero-day flaws, prompting the release of security patches and mitigation instructions. Agencies are required to follow a series of steps to bring the … Read more

Apple emergency updates fix recent zero-days on older iPhones

December 11, 2023 by Xynik

December 11, 2023 at 02:28PM Apple has issued emergency security updates for two zero-day flaws in iOS, iPadOS, tvOS, and watchOS. The CVE-2023-42916 and CVE-2023-42917 vulnerabilities in the WebKit browser engine allowed attackers to access sensitive data and execute arbitrary code. Security researcher Clément Lecigne discovered and reported both flaws. CISA ordered Federal Civilian Executive … Read more

Backdoor Implant on Hacked Cisco Devices Modified to Evade Detection

October 24, 2023 by Xynik

October 24, 2023 at 05:45AM The threat actor behind the recent Cisco device backdoor attack has modified the implant to avoid detection through previous fingerprinting methods. The attacks exploit zero-day vulnerabilities, allowing the actor to gain access to devices and deploy a Lua-based implant. Cisco is rolling out security updates, but the exact identity of … Read more

Cisco Finds New Zero Day Bug, Pledges Patches in Days

October 20, 2023 by Xynik

October 20, 2023 at 04:12PM Cisco is set to release a patch on October 22 for two zero-day vulnerabilities in its IOS XE devices. One vulnerability, discovered earlier, had already been exploited to compromise over 10,000 devices. A second flaw, identified later, is being used in the same exploit chain. Exploitation is expected to continue … Read more