theregister25 天
Ransomware scum blow holes in Cleo software patches, Cl0p (sort of) claims responsibility
The software vendor has since issued a security alert for a new vulnerability, CVE-2024-55956, and "strongly advises" customers to upgrade instances of Harmony, VLTrader, and LexiCom to version ...
Bleeping Computer26 天
Windows kernel bug now exploited in attacks to gain SYSTEM privileges
Redmond patched the bug during the June 2024 Patch Tuesday, with proof-of-concept exploit code released on GitHub four months later. "An attacker who successfully exploited this vulnerability ...
Bleeping Computer28 天
CISA confirms critical Cleo bug exploitation in ransomware attacks
The company has not disclosed that CVE-2024-50623 was targeted in the wild; however, on Friday, CISA added the security bug to its catalog of known exploited vulnerabilities, tagging it as being ...
Tom's Guide29 天
Apple Passwords app affected by critical bug — update to iOS 18.2 now
Even if you’ve done everything right when setting up Apple's built-in password manager, this bug would still leave you vulnerable to hackers. However, by maintaining best practices on your own ...