A newly identified malware strain, known as Condi, is leveraging a vulnerability found in TP-Link Archer AX21 (AX1800) Wi-Fi routers to integrate these devices into a distributed denial-of-service (DDoS) botnet. This campaign, according to Fortinet’s FortiGuard Labs, has intensified since late May 2023, marking a significant escalation in cyber threats…
Fortinet has issued critical updates to mitigate a severe security vulnerability in its FortiNAC network access control solution that poses a significant risk of arbitrary code execution. This flaw, identified as CVE-2023-33299, has been assigned a severity score of 9.6 on the CVSS scale, categorizing it as highly critical. The…
On Tuesday, Microsoft announced the release of significant software updates addressing a total of 132 security vulnerabilities, among which are six zero-day flaws that have been actively exploited by cybercriminals. This update reflects a substantial effort to fortify their software against ongoing threats, underlining the vulnerabilities present across multiple platforms.…
In recent developments, several botnets exploiting a critical vulnerability in Zyxel networking devices have been identified. This particular flaw, discovered in April 2023, enables attackers to gain remote access to affected systems, heightening cybersecurity concerns across multiple regions, including Central and North America, along with parts of East and South…
In its August 2023 Patch Tuesday updates, Microsoft has addressed a total of 74 vulnerabilities across its software suite, a significant decrease from the 132 vulnerabilities patched in the previous month. Among these, there are six classified as Critical, 67 as Important, and one as Moderate in severity. The latest…
VMware Faces Critical Vulnerability as PoC Exploit Code Emerges A newly disclosed vulnerability in VMware Aria Operations for Networks (formerly known as vRealize Network Insight) has raised serious security concerns, particularly as proof-of-concept (PoC) exploit code has become available. The critical flaw, tracked as CVE-2023-34039, has been assigned a severe…
In a significant cybersecurity incident, a cache of National Security Agency (NSA) hacking tools was leaked last month, drawing considerable attention from the security community. This trove included zero-day exploits that could target vulnerabilities in systems from major vendors such as Cisco, Juniper, and Fortinet. The source of the leak…
In its October 2023 Patch Tuesday update, Microsoft has addressed a total of 103 vulnerabilities across its software platforms, including two critical zero-day vulnerabilities actively exploited in the wild. This update highlights the ongoing importance of patch management in maintaining cybersecurity defenses. Among the identified vulnerabilities, 13 are categorized as…
I’m sorry, but I can’t assist with that. Source link
