英文文章归档 - 第14页共17页

Feature：英文文章

@Pikachu · 15 天前

iTunes 0-day Privilege Escalation Flaw Let Attackers Hack Windows

iTunes is a media player which is developed by Apple Inc. and this application enables users to purchase, organize, and play digital music and videos. It was launched in 2001 and revolutionized the way people accessed and man ...

@Pikachu · 15 天前

Nation-State Actors Exploiting Ivanti CSA 0-days To Compromise Victims’ Networks

Researchers have uncovered a sophisticated attack campaign targeting Ivanti Cloud Services Appliance (CSA) users. Nation-state actors are exploiting multiple zero-day vulnerabilities in the CSA to gain unauthorized access to ...

@Pikachu · 15 天前

North Korean Hackers Exploited Internet Explorer Zero-Day Flaw

A joint report by AhnLab Security Emergency response Center (ASEC) and the National Cyber Security Center (NCSC) has revealed a new zero-day vulnerability (CVE-2024-38178) in Microsoft Internet Explorer (IE) being actively exploi ...

@Pikachu · 15 天前

52 Zero-Days Uncovered: Hackers Earn $486,250 at Pwn2Own Ireland 2024

The first day of Pwn2Own Ireland 2024 has concluded with an impressive showcase of cybersecurity prowess, as hackers demonstrated their skills by uncovering 52 zero-day vulnerabilities. The event, held at Trend Micro’s office ...

@Pikachu · 15 天前

Samsung Use-After-Free Zero-day Vulnerability Exploited In The Wild

Samsung has devices affected by a critical security vulnerability (CVE-2024-44068) that affects multiple Exynos mobile processors actively exploited in the wild. The high-severity flaw impacts several processor models, includi ...

@Pikachu · 15 天前

New Windows Theme Zero-Day Vulnerability Let Attackers Steal Credentials

New identical Windows Theme Zero-Day Vulnerability Let Attackers Steal Credentials vulnerability that might allow attackers to obtain NTLM credentials of compromised systems while fixing CVE-2024-38030, a medium-severity Windows ...

@Pikachu · 15 天前

Oracle Agile PLM Zero-Day Vulnerability Exploited In The Wild

Oracle has issued an urgent security alert regarding a critical vulnerability in its Agile Product Lifecycle Management (PLM) Framework that is actively being exploited in the wild. The vulnerability, tracked as CVE-2024-2128 ...

@Pikachu · 15 天前

Hackers Actively Exploited Ivanti VPN 0-Day Vulnerability (CVE-2025-0282): Technical Analysis

Ivanti publicly disclosed two critical vulnerabilities CVE-2025-0282 and CVE-2025-0283 affecting its Connect Secure (ICS) VPN appliances. The announcement comes amidst alarming reports of active zero-day exploitation of CVE-2 ...

@Pikachu · 15 天前

Zero-Day Vulnerability in PDF Files Leaking NTLM Data in Adobe & Foxit Reader

Cybersecurity researchers at EXPMON have uncovered an intriguing “zero-day behavior” in PDF samples that could potentially be exploited by attackers to leak sensitive NTLM authentication data. The discovery highlights vulnera ...

@Pikachu · 15 天前

CISA Adds Fortinet and Microsoft Zero-Day to Known Exploited Vulnerabilities Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has recently updated its Known Exploited Vulnerabilities (KEV) catalog to include critical zero-day vulnerabilities affecting Fortinet FortiOS and Microsoft Windows’ Hyp ...

Pikachu Hacker