Hacking
SonicWall firewall bug leveraged in attacks after PoC exploit release
February 14, 2025
01:13 PM
0
Attackers are now targeting an authentication bypass vulnerability affecting SonicWall firewalls shortly after the release of proof-of-concept (PoC) exploit code.
This security flaw (CVE-2024-53704), tagged by CISA as critical severity and found in the SSLVPN authentication mechanism, impacts SonicOS versions 7.1.x (up to 7.1.1-7058), 7.1.2-7019, and 8.0.0-8035, used by multiple models of Gen 6 and Gen 7 firewalls and SOHO...
Hackers exploit authentication bypass in Palo Alto Networks PAN-OS
February 14, 2025
04:20 PM
0
Hackers are launching attacks against Palo Alto Networks PAN-OS firewalls by exploiting a recently fixed vulnerability (CVE-2025-0108) that allows bypassing authentication.
The security issue received a high-severity score and impacts the PAN-OS management web interface and allows an unauthenticated attacker on the network to bypass authentication and invoke certain PHP scripts, potentially compromising integrity and...
Cybersecurity firm's Chrome extension hijacked to steal users' data
December 27, 2024
10:39 AM
0
At least five Chrome extensions were compromised in a coordinated attack where a threat actor injected code that steals sensitive information from users.
One attack was disclosed by Cyberhaven, a data loss prevention company that alerted its customers of a breach on December 24 after a successful phishing attack on an administrator account for the Google Chrome store.
Among Cyberhaven's customers are Snowflake,...
Hackers exploit DoS flaw to disable Palo Alto Networks firewalls
December 27, 2024
11:33 AM
0
Palo Alto Networks is warning that hackers are exploiting the CVE-2024-3393 denial of service vulnerability to disable firewall protections by forcing it to reboot.
Leveraging the security issue repeatedly, however, causes the device to enter maintenance mode and manual intervention is required to restore it to normal operations.
"A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS...
Hackers steal ZAGG customers' credit cards in third-party breach
December 28, 2024
11:57 AM
0
ZAGG Inc. is informing customers that their credit card data has been exposed to unauthorized individuals after hackers compromised a third-party application provided by the company's e-commerce provider, BigCommerce.
ZAGG is a consumer electronics accessories maker known for its mobile accessories, such as screen protectors, phone cases, keyboards, and power banks. The Utah-based company has an annual revenue of $600...
More Blogs
Read More
SonicWall firewall bug leveraged in attacks after PoC exploit release
February 14, 2025
01:13 PM
0
Attackers are now targeting an...
White House links ninth telecom breach to Chinese hackers
December 27, 2024
03:02 PM
0
A White House official has added...
AT&T and Verizon say networks secure after Salt Typhoon breach
December 30, 2024
04:18 AM
1
AT&T and Verizon confirmed...
Microsoft issues urgent dev warning to update .NET installer link
December 30, 2024
10:06 AM
2
Microsoft is forcing .NET...
Malicious PirateFi game infects Steam users with Vidar malware
February 14, 2025
12:32 PM
0
A free-to-play game named...