no alarms and no surprises please..

CVE-2024-11639 (CVSS 10) – Critical Flaw in Ivanti Cloud Services Application: Immediate Patch Recommended Ivanti, a leading provider of IT management and security solutions, has released critical security updates for the Ivanti Cloud Services Application (CSA). These updates address vulnerabilities that could lead to… Go to gbhackers.com

UAC-0185 APT Leverages Social Engineering to Target Ukrainian Defense Industrial Base The Computer Emergency Response Team of Ukraine (CERT-UA) has issued a security advisory (CERT-UA#12414) detailing a sophisticated phishing campaign targeting organizations within Ukraine’s defense industrial base. The attacks, attributed to… Go to gbhackers.com

Ivanti Connect Secure and Policy Secure Updates Address Critical Vulnerabilities Ivanti, a leader in unified endpoint and enterprise service management, has issued patches for several high and critical vulnerabilities affecting its Connect Secure and Policy Secure solutions. These updates are… Go to gbhackers.com

Researcher Details CVE-2024-44131 – A Critical TCC Bypass in macOS and iOS Jamf Threat Labs has identified a vulnerability in Apple’s Transparency, Consent, and Control (TCC) security framework. Designated as CVE-2024-44131, this flaw enables malicious applications to bypass user consent mechanisms and… Go to gbhackers.com

Microsoft Strengthens Default Security Posture Against NTLM Relay Attacks Microsoft has announced significant enhancements to its default security configuration, aimed at mitigating the risk of NTLM relay attacks across its ecosystem. In a recent blog post, the company detailed… Go to gbhackers.com

CVE-2024-52335 (CVSS 9.8): Siemens Healthineers Addresses Critical Flaw in Medical Imaging Software Siemens Healthineers has released a critical security update to address an unauthenticated SQL injection vulnerability in its syngo.plaza VB30E medical imaging software. The vulnerability, identified as CVE-2024-52335 and assigned a… Go to gbhackers.com

Exploiting CDN Integrations: A WAF Bypass Threatening Global Web Applications In a recently disclosed analysis, Zafran’s research team has unveiled a pervasive misconfiguration vulnerability affecting some of the world’s largest web application firewall (WAF) vendors, including Akamai, Cloudflare, Fastly, and… Go to gbhackers.com

No Warning, No Data: Hetzner Terminates Kiwix Account Abruptly A recent incident involving Hetzner, a well-known European cloud hosting provider, and Kiwix, a non-profit organization dedicated to offline access to Wikipedia, has brought to light critical considerations regarding cloud… Go to gbhackers.com

CVE-2024-47578 (CVSS 9.1): SAP Issues Critical Patch for NetWeaver AS for JAVA SAP’s latest Security Patch Day, released today, detailed 10 new Security Notes alongside updates to three previously released notes. Among the newly disclosed vulnerabilities, multiple critical and high-priority flaws demand… Go to gbhackers.com

CVE-2024-50623: Critical Vulnerability in Cleo Software Actively Exploited in the Wild Huntress Labs has raised the alarm over the active exploitation of a critical vulnerability (CVE-2024-50623) in Cleo’s Harmony, VLTrader, and LexiCom software, commonly used for managing file transfers. Threat actors… Go to gbhackers.com

How Can You Unblock Your IP Address in 5 Easy Ways? Method Quick Overview Restart Your Router Gets you a new IP address from your ISP Use a VPN Changes your IP address via a VPN server Use a Proxy Server… Go to gbhackers.com

CVE-2024-54143: Critical Vulnerability in OpenWrt’s Attended SysUpgrade Server Allows for Firmware Poisoning OpenWrt, a popular open-source operating system for embedded devices, has disclosed a critical vulnerability (CVE-2024-54143) that could allow attackers to compromise the integrity of firmware updates delivered through its Attended… Go to gbhackers.com

Let’s Encrypt to Deprecate OCSP in Favor of CRLs, Enhancing User Privacy Let’s Encrypt, a leading certificate authority renowned for its commitment to a secure and privacy-respecting internet, has formally announced the deprecation of the Online Certificate Status Protocol (OCSP). This strategic… Go to gbhackers.com

International Operation Dismantles Phone Phishing Ring Targeting Vulnerable Individuals Across Europe A sophisticated phone phishing operation targeting vulnerable individuals, primarily the elderly, has been dismantled in a joint operation conducted by Belgian and Dutch law enforcement agencies, with support from Europol… Go to gbhackers.com

Bulletproof Hosting: The Dark Infrastructure Behind Global Cybercrime A recent report by the Knownsec 404 team highlights the pivotal role of bulletproof hosting services in facilitating global cybercriminal activities. These specialized hosting providers, often referred to as “dark… Go to gbhackers.com

CVE-2024-11205: WPForms Plugin Vulnerability Impacts 6 Million WordPress Sites A critical vulnerability (CVE-2024-11205) discovered in WPForms, a prevalent WordPress form builder plugin with over 6 million active installations, exposed websites to significant financial risk. The vulnerability, assigned a CVSS… Go to gbhackers.com

FCC Takes Action to Strengthen Cybersecurity in Response to Salt Typhoon Cyberattack The Federal Communications Commission (FCC) is taking decisive action to bolster the cybersecurity of U.S. telecommunications networks in the wake of the Salt Typhoon cyberattack, a sophisticated intrusion attributed to… Go to gbhackers.com

CVE-2024-55579 & CVE-2024-55580: Qlik Sense Users Face Serious Security Risk Qlik, a leading provider of business intelligence and data analytics platforms, has disclosed two vulnerabilities affecting Qlik Sense Enterprise for Windows. These vulnerabilities, identified as CVE-2024-55579 and CVE-2024-55580, could allow… Go to gbhackers.com

CVE-2024-55563: Transaction-Relay Jamming Vulnerability Poses Threat to Bitcoin Lightning Network A recently disclosed vulnerability, identified as CVE-2024-55563, has revealed a critical security risk within the Bitcoin network’s transaction-relay mechanism, with potential implications for the stability and security of the Lightning… Go to gbhackers.com

Activation Context Hijacking: “Eclipse” PoC Weaponizes Trusted Processes Kurosh Dabbagh Escalante, a Red Team Operator at BlackArrow, has introduced Eclipse, a proof-of-concept (PoC) tool designed to exploit Activation Context hijacking. By leveraging a technique known as Activation Context… Go to gbhackers.com

Windows Zero-Day Vulnerability CVE-2024-38193 Exploited in the Wild: PoC Published A critical use-after-free vulnerability, identified as CVE-2024-38193, has been discovered in the afd.sys Windows driver. This vulnerability, with a CVSS score of 7.8, poses a significant threat to Windows systems,… Go to gbhackers.com

Mauri Ransomware Exploits Apache ActiveMQ Flaw (CVE-2023-46604) The AhnLab Security Intelligence Response Center (ASEC) has revealed that threat actors exploiting a critical vulnerability in Apache ActiveMQ, identified as CVE-2023-46604, have begun deploying Mauri ransomware in their attacks…. Go to gbhackers.com

QNAP Addresses High Severity Vulnerabilities in License Center and Operating Systems QNAP, a leading provider of network-attached storage (NAS) solutions, has issued a security advisory addressing multiple vulnerabilities affecting its License Center and QTS/QuTS hero operating systems. The vulnerabilities range in… Go to gbhackers.com

Google Fixes Critical RCE Vulnerabilities in December 2024 Pixel Security Update Google has rolled out its December 2024 security update for Pixel devices, addressing a total of 28 vulnerabilities, including two critical remote code execution (RCE) flaws in the Cellular baseband… Go to gbhackers.com

The Rise of Mac Malware: 2024 Threat Report Reveals Alarming Trends For years, macOS enjoyed a reputation as a secure platform, relatively untouched by malware. However, a 60% surge in macOS market share over the past three years has made it… Go to gbhackers.com

Manjaro 24.2 “Yonada” Released: A Refined and Feature-Rich Update Manjaro Linux, the acclaimed Arch-based distribution renowned for its user-centric approach, has announced the release of version 24.2, codenamed “Yonada.” This latest iteration delivers a compelling blend of stability, performance,… Go to gbhackers.com

CVE-2024-12209 (CVSS 9.8): WP Umbrella Plugin Vulnerability Exposes 30,000 Websites to Compromise A critical security vulnerability has been discovered in the popular WordPress plugin, WP Umbrella, which is used by over 30,000 websites. The flaw, identified as CVE-2024-12209 and assigned a CVSS… Go to gbhackers.com

Google’s Vanir: A Powerful New Open-Source Tool for Supercharging Security Patch Validation In a move set to redefine security patch validation, Google announced the public availability of Vanir, an open-source tool designed to revolutionize how developers identify and address security vulnerabilities. Initially… Go to gbhackers.com

SystemRescue 11.03 Boots Up with a Powerful New Kernel and Updated Tools! SystemRescue, the renowned open-source system recovery toolkit, announces the release of version 11.03. This iteration delivers crucial updates to the kernel and core utilities, further solidifying its position as a… Go to gbhackers.com

BlueAlpha Exploits Cloudflare Tunnels for GammaDrop Malware Infrastructure The Insikt Group has uncovered a sophisticated cyber-espionage operation conducted by BlueAlpha, a state-sponsored threat actor with links to the Russian Federal Security Service (FSB). The campaign targets Ukrainian entities… Go to gbhackers.com

FSB-Tampered Device Returned with Monokle-Type Spyware, Experts Reveal A joint investigation by the First Department and cybersecurity researchers has exposed the covert implantation of spyware resembling the Monokle family on a confiscated device returned to a Russian programmer…. Go to gbhackers.com