Researchers Uncover Nuclei Vulnerability Enabling Signature Bypass and Code Execution

Category Details Threat Actors Not explicitly mentioned; potential attackers exploiting flaws in Nuclei templates. Campaign…

ClickFix Campaign: Fake Google Meet Alerts Spread Malware Across Windows and macOS

Category Details Threat Actors Unknown actors leveraging social engineering and fake Google Meet error messages.…

Botnets Continue to Target Aging D-Link Vulnerabilities

Category Details Threat Actors Unspecified; associated with botnets like "FICORA" (Mirai variant) and "CAPSAICIN" (Keksec…

Palo Alto Releases Patch for PAN-OS DoS Flaw — Update Immediately

Category Details Threat Actors Not specified; exploitation by unauthenticated attackers exploiting malicious DNS packets. Campaign…

Apache MINA CVE-2024-52046: CVSS 10.0 Flaw Enables RCE via Unsafe Serialization

Category Details Threat Actors Not specifically identified. Campaign Overview Vulnerability CVE-2024-52046 in Apache MINA allows…

FICORA and Kaiten Botnets Exploit Old D-Link Vulnerabilities for Global Attacks

Category Details Threat Actors Botnet operators using Mirai variant (FICORA) and Kaiten variant (CAPSAICIN). Campaign…

Critical SQL Injection Vulnerability in Apache Traffic Control Rated 9.9 CVSS — Patch Now

Category Details Threat Actors • No specific threat actors identified, but the vulnerability could be…

Apache Tomcat Vulnerability CVE-2024-56337 Exposes Servers to RCE Attacks

Category Details Threat Actors • No specific threat actors mentioned. Campaign Overview • Release of…

CISA Adds Acclaim USAHERDS Vulnerability to KEV Catalog Amid Active Exploitation

Category Details Threat Actors • China-linked APT41 (previously attributed to exploiting CVE-2021-44207 in 2021). Campaign…

Severe Path Traversal Vulnerability in Adobe ColdFusion (CVE-2024-53961), Update Now

Category Details Threat Actors • No specific threat actor mentioned, but there is a concern…