Description FortiGuard Labs captured a phishing campaign that spreads a
new Agent Tesla variant. This well-known malware family uses a
.Net-based Remote Access Trojan (RAT) and data stealer to gain initial
access by exploiting vulnerabilities Microso...
Description FortiGuard Labs continue to see cyber-attacks targeting to
exploit the ColdFusion vulnerability CVE-2023-26360. Blocking over
multiple hundreds of attacks over the last weeks. CVEs CVE-2023-26359',
'CVE-2023-26360 Severity High Posted On ...
Description A command injection vulnerability (Zyxel P660HN-T1A v1) in
the Remote System Log forwarder function of firmware version 3.40
(ULM.0) b3 could allow a remote unauthenticated attacker to execute some
OS commands by sending a crafted HTTP re...
Description Ivanti Endpoint Manager Mobile (EPMM, formerly MobileIron
Core) contains an authentication bypass vulnerability (CVE-2023-35078)
that allows unauthenticated access to specific API paths and a path
traversal vulnerability (CVE-2023-35081)....
Description Microsoft has identified a phishing campaign conducted by
the threat actor tracked as Storm-0978 targeting defense and government
entities in Europe and North America. The campaign involved the abuse of
CVE-2023-36884, a remote code execu...