Zeroday

Broadcom urges VMware customers to patch ‘emergency’ zero-day bugs under active exploitation – Go Health Pro

by
Broadcom urges VMware customers to patch ‘emergency’ zero-day bugs under active exploitation – Go Health Pro

U.S. technology giant Broadcom is warning that a trio of VMware vulnerabilities are being actively exploited by malicious hackers to compromise the networks of its corporate customers.  The three vulnerabilities — collectively dubbed “ESXicape” by one security researcher — affect VMware ESXi, Workstation, and Fusion, which are widely used software hypervisor products that allow multiple … Read more

Amnesty Finds Cellebrite’s Zero-Day Used to Unlock Serbian Activist’s Android Phone – Go Health Pro

by
Amnesty Finds Cellebrite’s Zero-Day Used to Unlock Serbian Activist’s Android Phone – Go Health Pro

Feb 28, 2025Ravie LakshmananMobile Security / Zero-Day A 23-year-old Serbian youth activist had their Android phone targeted by a zero-day exploit developed by Cellebrite to unlock the device, according to a new report from Amnesty International. “The Android phone of one student protester was exploited and unlocked by a sophisticated zero-day exploit chain targeting Android … Read more

BeyondTrust Zero-Day Breach Exposed 17 SaaS Customers via Compromised API Key – Go Health Pro

by
BeyondTrust Zero-Day Breach Exposed 17 SaaS Customers via Compromised API Key – Go Health Pro

Feb 01, 2025Ravie LakshmananVulnerability / Zero-Day BeyondTrust has revealed it completed an investigation into a recent cybersecurity incident that targeted some of the company’s Remote Support SaaS instances by making use of a compromised API key. The company said the breach involved 17 Remote Support SaaS customers and that the API key was used to … Read more

Hackers Exploit Zero-Day in cnPilot Routers to Deploy AIRASHI DDoS Botnet – Go Health Pro

by
Hackers Exploit Zero-Day in cnPilot Routers to Deploy AIRASHI DDoS Botnet – Go Health Pro

Threat actors are exploiting an unspecified zero-day vulnerability in Cambium Networks cnPilot routers to deploy a variant of the AISURU botnet called AIRASHI to carry out distributed denial-of-service (DDoS) attacks. According to QiAnXin XLab, the attacks have leveraged the security flaw since June 2024. Additional details about the shortcomings have been withheld to prevent further … Read more

Ivanti Zero-Day Vulnerability Exploited: The Details – Go Health Pro

by
Ivanti Zero-Day Vulnerability Exploited: The Details – Go Health Pro

The UK’s National Cyber Security Centre (NCSC) and its US counterpart have issued an urgent advisory to Ivanti customers after discovering two critical vulnerabilities, one of which is actively exploited. Read on to see how the Ivanti Zero-Day Vulnerability was exploited. Details of how the Ivanti Zero-Day Vulnerability was exploited Ivanti released a security advisory … Read more

x