The Hacker News1h
QNAP Patches New Flaws in QTS and QuTS hero Impacting NAS Appliances
All the shortcomings, that require a valid account on NAS devices, have been addressed in QTS 5.1.7.2770 build 20240520 and ...
The Hacker News2h
Critical Veeam Backup Enterprise Manager Flaw Allows Authentication Bypass
Veeam has disclosed four vulnerabilities in its Backup Enterprise Manager, including a critical security flaw (CVE-2024-29849 ...
The Hacker News6h
Zoom Adopts NIST-Approved Post-Quantum End-to-End Encryption for Meetings
Popular enterprise services provider Zoom has announced the rollout of post-quantum end-to-end encryption (E2EE) for Zoom ...
The Hacker News14h
Critical GitHub Enterprise Server Flaw Allows Authentication Bypass
A critical vulnerability (CVE-2024-4985) has been discovered in GitHub Enterprise Server, allowing attackers to bypass ...
The Hacker News14h
Malware Delivery via Cloud Services Exploits Unicode Trick to Deceive Users
A new attack campaign dubbed CLOUD#REVERSER has been observed leveraging legitimate cloud storage services like Google Drive ...
The Hacker News17h
SolarMarker Malware Evolves to Resist Takedown Attempts with Multi-Tiered Infrastructure
SolarMarker malware evolves with a multi-tiered infrastructure, making it harder for law enforcement to take down.
The Hacker News20h
Researchers Uncover Flaws in Python Package for AI Models and PDF.js Used by Firefox
Researchers uncover critical security flaws in two widely used software packages, llama_cpp_python for AI models and PDF.js ...
The Hacker News20h
Windows 11 to Deprecate NTLM, Add AI-Powered App Controls and Security Defenses
Microsoft has announced several new security features to strengthen Windows 11, including deprecating the NT LAN Manager ...
The Hacker News20h
NextGen Healthcare Mirth Connect Under Attack - CISA Issues Urgent Warning
CISA has flagged a critical security flaw in NextGen Healthcare Mirth Connect, linked to remote code execution.
The Hacker News1d
"Linguistic Lumberjack" Vulnerability Discovered in Popular Logging Utility Fluent Bit
Cybersecurity researchers have discovered a critical security flaw in a popular logging and metrics utility called Fluent Bit ...
The Hacker News1d
Iranian MOIS-Linked Hackers Behind Destructive Attacks on Albania and Israel
Iranian threat actor Void Manticore (Storm-0842) has been identified as the culprit behind destructive wiping attacks ...
The Hacker News1d
Foxit PDF Reader Flaw Exploited by Hackers to Deliver Diverse Malware Arsenal
Multiple threat actors are weaponizing a design flaw in Foxit PDF Reader to deliver a variety of malware such as Agent Tesla, ...