SolarWinds
“Trivially exploitable” bug in SolarWinds file server needs prompt fixing
“CVE-2024-28995 is not known to be exploited in the wild as of 9 AM ET on June 11. We expect this to change."
Cybersecurity
Progress Software blasts “irresponsible” POC disclosure for CVSS 10 bug amid attacks
A fair gripe, or shooting the messenger?
file transfer
File transfer software again under attack – CVSS 10 bug exploitable with a single HTTPS POST request
Some 2,900 exposed. It's Progress, but it's not progress...
MOVEit
Fuzzy Thinking: Yet more critical SQL Injection bugs in MOVEIt Transfer
You're tired? Everyone's tired. Just patch promptly please.
Cybersecurity
Malvertising: Threat actors are duping downloaders using... Google Ads and SEO
Threat actors are using SEO to trick users into downloading ransomware.
Cybersecurity
IBM high speed file transfer software exploited by hackers
A pre-auth RCE in IBM Aspera Faspex is being exploited in the wild