- + C-DATA Web Management System RCE Attack—FortiGuard labs observed a critical level of attack attempts in the wild targeting a 2 year old vulnerability found on C-DATA Web Management Systems.
- + Akira Ransomware—FortiGuard Labs continue to observe detections in the wild related to the Akira ransomware group. According to the new report by CISA it has targeted ...
- + PAN-OS GlobalProtect Command Injection Vulnerability—The attack on PAN-OS GlobalProtect devices identified as CVE-2024-3400 allows a malicious actor to remotely exploit an unauthenticated command injecti...
- + Sunhillo SureLine Command Injection Attack—The attack on Sunhillo SureLine identified as CVE-2021-36380 allows a malicious actor to exploit an unauthenticated OS Command Injection vulnerability...
- + Nice Linear eMerge Command Injection Vulnerability—The vulnerability tracked as CVE-2019-7256 affecting an access control system called Linear eMerge E3-Series is affected by an OS command injection fl...
- + ConnectWise ScreenConnect Attack—Threat actors including ransomware gangs are seen exploiting newly discovered critical flaws in remote monitoring and management software called Scree...
- + Ivanti Connect Secure and Policy Secure Attack—Widespread exploitation of zero-day vulnerabilities affecting Ivanti Connect Secure and Policy Secure gateways underway.
- + Outbreak Alert- Annual Report 2023—FortiGuard Labs published a total of 38 Outbreak Alerts in the year 2023 comprising of 23 Significant Vulnerabilities, 8 Targeted Attack Campaigns, 4 ...
- + Androxgh0st Malware Attack—FortiGuard Labs continue to observe widespread activity of Androxgh0st Malware in the wild exploiting multiple vulnerabilities, specifically targeting...
- + Adobe ColdFusion Access Control Bypass Attack—FortiGuards labs observed extremely widespread exploitation attempts relating to security bypass vulnerabilities in Adobe ColdFusion. Successful explo...
- + Microsoft SharePoint Server Elevation of Privilege Vulnerability—CVE-2023-29357 is an authentication bypass vulnerability, which means that adversaries may use it to escalate privileges on affected installations of ...
- + JetBrains TeamCity Authentication Bypass Attack—Multiple Threat actors seen exploiting the authentication bypass flaw in JetBrains TeamCity that could lead to remote code execution. If compromised, ...
As of 4/26/24 2:35am. Last new 4/25/24 11:15pm. Score: 200
- Next feed in category: CISA NCAS ALERTS