First Hackers News

Latest cybersecurity news, real attacks, and practical IOCs—made simple and actionable.

vulnerability

ArubaOS Critical Vulnerability Allows Remote Code Execution by Attackers Aruba

Aruba

ArubaOS Critical Vulnerability Allows Remote Code Execution by Attackers

FHN May 3, 2024

Multiple vulnerabilities in ArubaOS affect HPE Aruba Networking devices, including Mobility Conductor, Mobility Controllers WLAN Gateways, and...

Grafana Tool Vulnerability Enables SQL Injection by Attackers Vulnerabilities and Exploits

Vulnerabilities and Exploits

Grafana Tool Vulnerability Enables SQL Injection by Attackers

FHN April 29, 2024

A severe SQL injection vulnerability has been discovered in Grafana, a popular open-source platform extensively used for...

Cactus Ransomware Exploits Vulnerability in Qlik Servers qlik-1400

qlik-1400

Cactus Ransomware Exploits Vulnerability in Qlik Servers

FHN April 26, 2024

Since November 2023, the Cactus ransomware gang has been exploiting vulnerable Qlik Sense servers, leveraging multiple vulnerabilities...

Urgent: GitLab Flaw Allows Account Takeover – Act Now GitLab

GitLab

Urgent: GitLab Flaw Allows Account Takeover – Act Now

FHN April 25, 2024

GitLab has issued security patches (16.11.1, 16.10.4, and 16.9.6) for both Community and Enterprise Editions, emphasizing the...

CrushFTP Zero-Day Enables Attackers to Gain Complete Server Access

emergent-threat-banner-1-1

CrushFTP Zero-Day Enables Attackers to Gain Complete Server Access

FHN April 24, 2024

CrushFTP disclosed a zero-day vulnerability (CVE-2024-4040) affecting versions below 10.7.1 and 11.1.0, allowing remote attackers with low...