ClickCease security vulnerabilites Archives - Page 17 of 21 - TuxCare

IceID malware infiltrates Active Directory...

In a notable IcedID malware attack, the assailant impacted the Active Directory domain of the victim in less than 24 hours, transiting from initial infection to lateral movement in fewer...

Zoho patches high-severity SQL injection...

Zoho says it has patched several ManageEngine products for a newly disclosed high-severity SQL injection flaw. CVE-2022-47523 is a SQL injection (SQLi) vulnerability in ManageEngine Password Manager Pro, PAM360, and...

Dridex malware targets Mac...

Dridex, a Windows-focused banking trojan that has since expanded its capabilities to include information theft and botnet capabilities, is now targeting Macs via email attachments that appear to be regular...

Okta records theft of source...

Okta has revealed that a malicious users hacked and replicated its source code repositories on GitHub earlier this month, after previously reporting a compromise carried out by South American hacking...

Vice Society using custom ransomware...

SentinelOne researchers discovered that the Vice Society group has released PolyVice, a custom ransomware that employs a reliable encryption scheme based on the NTRUEncrypt and ChaCha20-Poly1305 algorithms. The PolyVice is...

VMware patches three vulnerabilities during...

VMware has released patches for a number of vulnerabilities, including a virtual machine escape flaw, CVE-2022-31705, which was exploited during the GeekPwn 2022 hacking challenge, as part of this month’s...

APT5 exploits unauthenticated remote code...

The U.S. National Security Agency has warned that a Chinese state-sponsored group is exploiting an unauthenticated remote code execution flaw (CVE-2022-27518) to compromise Citrix Application Delivery Controller (ADC) deployments. According...

Trio of new flaws exploited...

Vedere Labs researchers recently discovered three new security flaws in a long list of flaws collectively tracked as OT:ICEFALL. The flaws are said to affect operational technology (OT) products from...

Bahamut deploys fake VPN apps...

ESET researchers discovered an ongoing campaign by the Bahamut APT group, a notorious cyber-mercenary group that has been active since 2016, that targets Android users with fake VPN apps and...

Arm’s Mali GPU driver flaws...

Despite fixes released by the chipmaker, a set of five medium-severity security flaws in Arm’s Mali GPU driver have remained unpatched on Android devices such as Samsung, Oppo, Xiaomi, and...

RansomExx malware offers new features...

The APT group DefrayX has launched a new version of its RansomExx malware known as RansomExx2, a variant for Linux rewritten in the Rust programming language, possibly to avoid detection...

Mail

Join

4,500

Linux & Open Source
Professionals!

Subscribe to
our newsletter