zeroday

Chinese cyber espionage group leveraging zero-day attacks on Fortinet and VMware

by
Chinese cyber espionage group leveraging zero-day attacks on Fortinet and VMware

A recent report by Mandiant has revealed that a China-linked cyber espionage actor known as UNC3886 has been exploiting zero-day vulnerabilities in Fortinet, Ivanti, and VMware devices. This threat actor has been using multiple persistence mechanisms to maintain access to compromised environments, including network devices, hypervisors, and virtual machines. The attacks orchestrated by UNC3886 have … Read more

Citrix alerts public to exploitation of new Netscaler zero-day vulnerabilities

by
Citrix alerts public to exploitation of new Netscaler zero-day vulnerabilities

Citrix has warned its customers about two zero-day vulnerabilities affecting Netscaler ADC and Gateway appliances that expose them to remote code execution and denial-of-service attacks. To exploit these vulnerabilities, attackers need access to low-privileged accounts and specific network configurations. Only customer-managed Netscaler appliances are affected, not Citrix-managed cloud services. The affected product versions include Netscaler … Read more

Citrix NetScaler Devices Vulnerable to Zero-Day Exploits

by
Citrix NetScaler Devices Vulnerable to Zero-Day Exploits

Citrix has issued a warning to its customers using NetScaler ADC and NetScaler Gateway appliances regarding two zero-day vulnerabilities that are actively being exploited in the wild. These vulnerabilities, known as CVE-2023-6548 and CVE-2023-6549, can allow attackers to carry out remote code execution and denial of service attacks on affected devices. The NetScaler ADC and … Read more

Citrix Alerts NetScaler ADC Customers About New Zero-Day Exploit – SecurityWeek

by

Citrix has issued a warning to its NetScaler ADC customers regarding a new zero-day exploit that could potentially pose a significant security risk. The company has urged all users of the application delivery controller to take immediate action to protect their systems. The zero-day exploit was discovered by security researchers who found a vulnerability in … Read more

Citrix NetScaler ADC and Gateway Vulnerable to New Zero-Day Attacks, Warns TechTarget

by
Citrix NetScaler ADC and Gateway Vulnerable to New Zero-Day Attacks, Warns TechTarget

Citrix’s NetScaler ADC and NetScaler Gateway products have been targeted once again by two new zero-day vulnerabilities. The vulnerabilities, known as CVE-2023-6549 and CVE-2023-6548, were recently disclosed and patched. CVE-2023-6549 is considered a high severity denial of service flaw, while CVE-2023-6548 allows for remote code execution in management interfaces by authenticated attackers. Exploits for these … Read more

Review of the Week: Google Resolves Another Chrome Zero-Day Vulnerability, YouTube Identified as a Platform for Cybercrime – Help Net Security

by
Review of the Week: Google Resolves Another Chrome Zero-Day Vulnerability, YouTube Identified as a Platform for Cybercrime – Help Net Security

In the past week, there have been several notable developments in the cybersecurity world. Google has once again patched a zero-day exploit in Chrome, marking the eighth emergency update for the browser this year. YouTube has been identified as a key platform for cybercrime, with social engineering threats expected to dominate cyber threats in 2024. … Read more

VMware swiftly addresses zero-day vulnerabilities showcased at Pwn2Own2024

by

VMware has recently fixed four vulnerabilities in its Workstation and Fusion desktop hypervisors, including three zero-day flaws that were demonstrated at Pwn2Own Vancouver 2024. These vulnerabilities include a use-after-free flaw in the Bluetooth device, a heap buffer overflow vulnerability in shader functionality, an information disclosure issue in the Bluetooth device, and another information disclosure vulnerability … Read more

VMware fixes three zero-day bugs exploited at Pwn2Own 2024

by
VMware fixes three zero-day bugs exploited at Pwn2Own 2024

VMware fixed four security vulnerabilities in the Workstation and Fusion desktop hypervisors, including three zero-days exploited during the Pwn2Own Vancouver 2024 hacking contest. The most severe flaw patched today is CVE-2024-22267, a use-after-free flaw in the vbluetooth device demoed by the STAR Labs SG and Theori teams. “A malicious actor with local administrative privileges on … Read more

Chinese hackers quietly exploited a VMware zero-day for two years

by
Chinese hackers quietly exploited a VMware zero-day for two years

Chinese state-sponsored hackers known as UNC3886 have been abusing a zero-day vulnerability in VMware and Fortinet devices for years, experts have revealed. A report from Mandiant claims the group used the flaw to deploy malware, steal credentials, and ultimately exfiltrate sensitive data. The flaw in question is tracked as CVE-2023-34048. It carries a severity score … Read more

Chinese Hackers Silently Weaponized VMware Zero-Day Flaw for 2 Years

by
Chinese Hackers Silently Weaponized VMware Zero-Day Flaw for 2 Years

Jan 20, 2024NewsroomZero Day / Cyber Espionage An advanced China-nexus cyber espionage group previously linked to the exploitation of security flaws in VMware and Fortinet appliances has been linked to the abuse of a critical vulnerability in VMware vCenter Server as a zero-day since late 2021. “UNC3886 has a track record of utilizing zero-day vulnerabilities … Read more