PoC Released for Critical Outlook Zero-Click RCE Bug
A Proof‑of‑Concept exploit has been released for a critical remote code execution vulnerability in Microsoft Outlook, tracked as CVE‑2024‑21413. The flaw, known as “MonikerLink,” allows attackers to bypass Outlook’s Protected [...]
Android Users Hit by New Albiriox Malware
Albiriox is a new Android malware that recently appeared on cybercrime forums. It offers advanced remote-access features and is sold as a Malware-as-a-Service tool. Researchers at Cleafy found that the [...]
GitLab Patches Critical Auth & DoS Bugs
GitLab has released important security updates for both its Community Edition (CE) and Enterprise Edition (EE) to fix several serious vulnerabilities. The new patches — versions 18.6.1, 18.5.3, and 18.4.5 [...]
Legacy Python Bugs Enable PyPI Attacks via Domain Hijack
Hidden vulnerabilities in old Python code can create serious risks for today’s development environments. A recent example involves legacy bootstrap scripts used by the zc.buildout tool. These outdated scripts still [...]
Microsoft Teams Guest Chat Risk Lets Attackers Bypass Security
A gap in Microsoft Teams’ B2B guest access allows attackers to bypass Defender for Office 365 protections, creating unprotected spaces for phishing and malware. This issue, highlighted by Ontinue, comes [...]
Get Social