The Hacker News6h
QNAP Patches New Flaws in QTS and QuTS hero Impacting NAS Appliances
All the shortcomings, that require a valid account on NAS devices, have been addressed in QTS 5.1.7.2770 build 20240520 and ...
The Hacker News7h
Critical Veeam Backup Enterprise Manager Flaw Allows Authentication Bypass
Veeam has disclosed four vulnerabilities in its Backup Enterprise Manager, including a critical security flaw (CVE-2024-29849 ...
The Hacker News6h
Zoom Adopts NIST-Approved Post-Quantum End-to-End Encryption for Meetings
Zoom's post-quantum E2EE uses Kyber-768, which aims at security roughly equivalent to AES-192. Kyber was chosen by the U.S.
The Hacker News11h
MS Exchange Server Flaws Exploited to Deploy Keylogger in Targeted Attacks
An unknown threat actor is exploiting known security flaws in Microsoft Exchange Server to deploy a keylogger malware in ...
The Hacker News19h
Critical GitHub Enterprise Server Flaw Allows Authentication Bypass
A critical vulnerability (CVE-2024-4985) has been discovered in GitHub Enterprise Server, allowing attackers to bypass ...
The Hacker News22h
SolarMarker Malware Evolves to Resist Takedown Attempts with Multi-Tiered Infrastructure
SolarMarker malware evolves with a multi-tiered infrastructure, making it harder for law enforcement to take down.
The Hacker News19h
Malware Delivery via Cloud Services Exploits Unicode Trick to Deceive Users
A new attack campaign dubbed CLOUD#REVERSER has been observed leveraging legitimate cloud storage services like Google Drive ...
The Hacker News1d
Researchers Uncover Flaws in Python Package for AI Models and PDF.js Used by Firefox
Researchers uncover critical security flaws in two widely used software packages, llama_cpp_python for AI models and PDF.js ...
The Hacker News1d
Windows 11 to Deprecate NTLM, Add AI-Powered App Controls and Security Defenses
Microsoft has announced several new security features to strengthen Windows 11, including deprecating the NT LAN Manager ...
The Hacker News1d
Iranian MOIS-Linked Hackers Behind Destructive Attacks on Albania and Israel
Iranian threat actor Void Manticore (Storm-0842) has been identified as the culprit behind destructive wiping attacks ...
The Hacker News1d
NextGen Healthcare Mirth Connect Under Attack - CISA Issues Urgent Warning
CISA has flagged a critical security flaw in NextGen Healthcare Mirth Connect, linked to remote code execution.
The Hacker News1d
Foxit PDF Reader Flaw Exploited by Hackers to Deliver Diverse Malware Arsenal
Multiple threat actors are weaponizing a design flaw in Foxit PDF Reader to deliver a variety of malware such as Agent Tesla, ...