CYBER Threat Intelligence Reports
LATEST CTIs
WordPress Plugin Vulnerability Leads to Malware Infection on Over 3,300 Sites
Hackers have exploited a vulnerability in the Popup Builder plugin for WordPress, impacting over 3,300 websites with malware infections. The flaw, tracked as CVE-2023-6000, affects…
Read more >
XSS Vulnerability in Ultimate Member Plugin Exposes Over 200,000 WordPress Websites to Risk
Over 200,000 WordPress websites are at risk due to a Cross-Site Scripting (XSS) vulnerability in the Ultimate Member plugin. Discovered by researcher stealthcopter and addressed…
Read more >
CISA Adds CVE-2024-27198 to Known Exploited Vulnerabilities Catalog
CISA has added CVE-2024-27198, an authentication bypass vulnerability in JetBrains TeamCity, to its Known Exploited Vulnerabilities Catalog. Organizations are urged to update to TeamCity version…
Read more >
CISA Advisory: Apple Security Updates for Multiple Products
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory regarding security updates released by Apple for multiple products, including Safari, macOS, watchOS, tvOS,…
Read more >
“Spinning YARN” Cyberattacks Target Cloud Servers Running Apache Hadoop, Atlassian Confluence, Docker, and Redis
The "Spinning YARN" cyberattack campaign targets cloud servers running Apache Hadoop, Atlassian Confluence, Docker, and Redis. Attackers exploit common misconfigurations and a known Confluence vulnerability…
Read more >
VMware Issues Security Patches for ESXi, Workstation, and Fusion Flaws
VMware has released security patches for four vulnerabilities in ESXi, Workstation, and Fusion. Critical flaws CVE-2024-22252 and CVE-2024-22253, use-after-free vulnerabilities in the XHCI USB controller,…
Read more >
