Critical Authentication Flaw in WhatsUp Gold Exposes Organizations to Attack
WhatsUp Gold, a popular network monitoring tool, has a critical vulnerability in versions before 2024.0.0, exposing organizations to potential cyber attacks and unauthorized data access. CVE-2024-6670 and CVE-2024-6671 are critical [...]
Cisco ASA SSH Flaw Leaves Devices Vulnerable
Cisco issued a critical advisory for a vulnerability in its Adaptive Security Appliance (ASA) Software that could let remote attackers execute commands with root privileges. The flaw, CVE-2024-20329, affects devices [...]
Roundcube Webmail Vulnerability Exploited in Attacks
Stored XSS vulnerability in Roundcube Webmail is exploited in attacks on ex-USSR government agencies. Researchers identified the attack but cannot determine the perpetrators Roundcube Webmail Vulnerability cybersecurity researchers detected active [...]
GitLab Patches Critical HTML Injection Flaw Allowing XSS Attacks
GitLab released patches (17.5.1, 17.4.3, and 17.3.6) for both Community and Enterprise Editions, fixing a critical HTML injection vulnerability in the Global Search feature that could lead to XSS attacks, [...]
Lazarus APT Hackers Exploit Chrome Zero-Day via Crypto Game
Lazarus APT exploited a Chrome zero-day using a crypto-themed game as bait, showcasing the group’s evolving financial tactics and social engineering. On May 13, 2024, Kaspersky detected a new infection [...]
FHN 
