Content Paint
Search
Sign in

vulnerabilities

Cybersecurity  | Mar 04, 2024
CI/CD platform TeamCity exposed to critical pre-auth RCE bug, amid disclosure spat
CI/CD platform TeamCity exposed to critical pre-auth RCE bug, amid disclosure spat

JetBrains' platform "a suitable vector to position an attacker to perform a supply chain attack" if compromised warns Rapid7.

ConnectWise  | Feb 23, 2024
Leaked LockBit malware deployed in ScreenConnect attacks – 600+ IPs seen attacking 8,200 instances
lockbit connectwise attack

"The executable in question was built using the LockBit 3 ransomware builder tool leaked in 2022, so this particular sample may not have originated with the actual LockBit developers"

vulnerabilities  | Feb 21, 2024
CVSS 10 ConnectWise vulnerability “extremely trivial to reverse and exploit” as POC lands, attacks start
screenconnect vulnerability connectwise cvss 10

"There might be active exploitation attempts across common AWS IP space"

 |  Patch Tuesday  | Feb 14, 2024
February’s Patch Tuesday brings exploited zero days, Exchange Server headaches
February’s Patch Tuesday brings exploited zero days, Exchange Server headaches

As a major Exchange Service update lands, Redmond admits "it is possible that some functionality may break after installing CU14..."

Ivanti  | Feb 02, 2024
Ivanti 0day fest continues with fresh bugs, attacks, as CISA tells federal agencies "just disconnect"
Ivanti 0day fest continues with fresh bugs, attacks, as CISA tells federal agencies "just disconnect"

"Threat actors have recently developed workarounds to current mitigations and detection methods and have been able to exploit weaknesses, move laterally, and escalate privileges without detection..."

vulnerabilities  | Jan 24, 2024
Exploit released for fresh Fortra GoAnywhere bug: CVSS 9.8 and again, nasty. Patch up.
New Fortra GoAnywhere vulnerability CVE-2024-0204

A 10-line exploit is now widely available. Unpatched instances *will* come under attack.

vulnerabilities  | Jan 19, 2024
vCenter Server vulnerability went exploited for two years unnoticed. Attacks are ongoing
vCenter Server vulnerability went exploited for two years unnoticed. Attacks are ongoing

There are no workarounds that remove the vulnerability, which allows unauthenticated remote command execution on vulnerable systems. A patch is available.

Cybersecurity  | Jan 16, 2024
Ivanti VPN appliance exploitation now happening at scale
Ivanti VPN appliance exploitation now happening at scale

VPN appliances "all appear to have been constructed with the code equivalent of string, stamped with the word ‘secure’ and then just left to decay for 20 years..."

vulnerabilities  | Jan 10, 2024
Pre-auth RCE zero days in Ivanti VPNs are being exploited by a Chinese APT and there won’t be a patch for weeks. Buckle up.
Pre-auth RCE zero days in Ivanti VPNs are being exploited by a Chinese APT and there won’t be a patch for weeks. Buckle up.

Attackers re-write JavaScript loaded by the VPN login page for the Appliance to capture credentials; also grabbed Veeam credentials, moved laterally for full SYSTEM control.

Interviews, Insight, Intelligence for Hungry Folks

© 2025 The Snack
©  2025 The Snack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.