exploits - The Stack

Patch now: Critical Jenkins exploits released

POCs validated, over 45,000 instances still publicly exposed after critical Jenkins vulnerability disclosed.

Azania Imtiaz Patel January 30, 2024

Kaspersky burns 11,000-line “NSA” exploit: Calls 14-step iPhone attack “definitely the most sophisticated attack chain we have ever seen”

Apex Predators aside and in other news, a major telco just got hacked because it didn't have MFA set up on a critical account...

Edward Targett January 04, 2024

A third of Barracuda zero day victims are gov't agencies

cybersecurity

News

A third of Barracuda zero day victims are gov't agencies

Attackers demonstrated such sophisticated persistence capabilities that Barracuda and Mandiant have urged users to dump affected appliances irrespective of patch level.

The Stack June 15, 2023

As CVE-2023-23397 exploits proliferate, worry mounts

Cybersecurity

outlook

vulnerabilities

As CVE-2023-23397 exploits proliferate, worry mounts

Security experts are warning that a critical Microsoft Outlook exploit is trivial to deploy and “will likely be leveraged imminently by actors for espionage purposes or financial gain” – after Ukrainian cybersecurity authorities disclosed CVE-2023-23397, a critical vulnerability that requires no user interaction to exploit. As The Stack reported, the critical...

The Stack March 16, 2023

Fortinet exploits: Attackers tampered with firewall firmware

Fortinet exploits: Attackers tampered with firewall firmware

“System enters error-mode due to FIPS error: Firmware Integrity self-test failed” suggests compromises.

The Stack March 14, 2023

Patch now: Critical Jenkins exploits released

Kaspersky burns 11,000-line “NSA” exploit: Calls 14-step iPhone attack “definitely the most sophisticated attack chain we have ever seen”

A third of Barracuda zero day victims are gov't agencies

As CVE-2023-23397 exploits proliferate, worry mounts

Fortinet exploits: Attackers tampered with firewall firmware