Citrix Virtual Apps & Desktops Zero-Day Actively Exploited
A critical unpatched vulnerability has been found in Citrix Virtual Apps and Desktops, now being actively exploited. The flaw, revealed by Watchtowr Labs, poses a significant risk, especially in remote [...]
Zohocorp ADAudit Plus SQL Injection Vulnerability
Zoho released a security update for a critical SQL injection flaw in ADAudit Plus (CVE-2024-49574), fixed in version 8123 on November 8, 2024. The SQL injection vulnerability was found in [...]
CISA Warns of Exploited Palo Alto Networks Vulnerabilities
CISA issued an urgent alert for two Palo Alto Networks vulnerabilities, CVE-2024-9463 and CVE-2024-9465, which are actively being exploited by cybercriminals. These vulnerabilities pose serious risks, especially to federal systems. [...]
Chinese SilkSpecter hackers targeting Black Friday shoppers
Chinese hacker group SilkSpecter launched a phishing campaign targeting Black Friday shoppers in Europe and the USA, using Stripe to steal card data while allowing legitimate transactions. SilkSpecter's Phishing Campaign [...]
4M+ WordPress Sites Vulnerable After Plugin Flaw
Critical flaw found in 'Really Simple Security' WordPress plugin, risking 4M+ sites. CVE-2024-10924 allows potential remote attacks and unauthorized admin access. CVE-2024-10924 The vulnerability impacts versions 9.0.0 to 9.1.1.1 of [...]
FHN 
