Vulnerabilities Fortinet Confirms New Zero-Day Exploitation Fortinet patches critical vulnerabilities, including a zero-day that has been exploited in the wild since at least November 2024. Eduard Kovacs4 days ago
Malware & Threats Exploitation of New Ivanti VPN Zero-Day Linked to Chinese Cyberspies Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies. Eduard KovacsJanuary 9, 2025
Vulnerabilities Palo Alto Networks Patches Firewall Zero-Day Exploited for DoS Attacks Palo Alto Networks has patched CVE-2024-3393, a vulnerability that has been exploited for DoS attacks against the company’s firewalls. Eduard KovacsDecember 30, 2024
Malware & Threats Undocumented DrayTek Vulnerabilities Exploited to Hack Hundreds of Orgs Undocumented vulnerabilities in DrayTek devices were exploited in ransomware campaigns that compromised over 300 organizations. Ionut ArghireDecember 16, 2024
Ransomware CVE Assigned to Cleo Vulnerability as Cl0p Ransomware Group Takes Credit for Exploitation The Cl0p ransomware group has taken credit for exploitation of the Cleo product vulnerability tracked as CVE-2024-55956. Eduard KovacsDecember 16, 2024
Nation-State Russian APT Chained Firefox and Windows Zero-Days Against US and European Targets The Russia-linked RomCom APT has been observed chaining two zero-days in Firefox and Windows for backdoor delivery. Ionut ArghireNovember 27, 2024
Vulnerabilities Oracle Patches Exploited Agile PLM Zero-Day Oracle has patched a high-severity information disclosure zero-day in Agile PLM that has been exploited in the wild. Ionut ArghireNovember 20, 2024
Malware & Threats Palo Alto Patches Firewall Zero-Day Exploited in Operation Lunar Peek Palo Alto Networks has released patches and CVEs for the firewall zero-days exploited in what the company calls Operation Lunar Peek. Eduard KovacsNovember 19, 2024
Malware & Threats Discontinued GeoVision Products Targeted in Botnet Attacks via Zero-Day A zero-day vulnerability affecting five discontinued GeoVision product models has been exploited by a botnet. Ionut ArghireNovember 18, 2024
Vulnerabilities Palo Alto Networks Releases IoCs for New Firewall Zero-Day Palo Alto Networks has released IoCs for the attacks exploiting a newly uncovered firewall zero-day vulnerability. Eduard KovacsNovember 18, 2024
Malware & Threats Fortinet VPN Zero-Day Exploited in Malware Attacks Remains Unpatched: Report The DeepData malware framework was seen exploiting a Fortinet VPN client for Windows zero-day that remains unpatched. Ionut ArghireNovember 18, 2024
Vulnerabilities Palo Alto Networks Confirms New Firewall Zero-Day Exploitation Palo Alto Networks has confirmed that a zero-day is being exploited in attacks after investigating claims of a firewall remote code execution flaw. Eduard KovacsNovember 15, 2024