Latest Actively Exploited news

CISA warns of critical Citrix ShareFile flaw exploited in the wild

CISA is warning that a critical Citrix ShareFile secure file transfer vulnerability tracked as CVE-2023-24489 is being targeted by unknown actors and has added the flaw to its catalog of known security flaws exploited in the wild.
- Lawrence Abrams
- August 16, 2023
- 05:31 PM
- 2
Gafgyt malware exploits five-years-old flaw in EoL Zyxel router

Fortinet has issued an alert warning that the Gafgyt botnet malware is actively trying to exploit a vulnerability in the end-of-life Zyxel P660HN-T1A router in thousands of daily attacks.
- Bill Toulas
- August 10, 2023
- 04:35 PM
- 0
Microsoft Office update breaks actively exploited RCE attack chain

Microsoft today released a defense-in-depth update for Microsoft Office that prevents exploitation of a remote code execution (RCE) vulnerability tracked as CVE-2023-36884 that threat actors have already leveraged in attacks.
- Ionut Ilascu
- August 08, 2023
- 04:15 PM
- 0
Hackers exploit BleedingPipe RCE to target Minecraft servers, players

Hackers are actively exploiting a 'BleedingPipe' remote code execution vulnerability in Minecraft mods to run malicious commands on servers and clients, allowing them to take control of the devices.
- Bill Toulas
- July 31, 2023
- 10:33 AM
- 3
Zimbra patches zero-day vulnerability exploited in XSS attacks

Two weeks after the initial disclosure, Zimbra has released security updates that patch a zero-day vulnerability exploited in attacks targeting Zimbra Collaboration Suite (ZCS) email servers.
- Sergiu Gatlan
- July 27, 2023
- 02:57 PM
- 0
Ivanti patches MobileIron zero-day bug exploited in attacks

US-based IT software company Ivanti has patched an actively exploited zero-day authentication bypass vulnerability impacting its Endpoint Manager Mobile (EPMM) mobile device management software (formerly MobileIron Core).
- Sergiu Gatlan
- July 24, 2023
- 04:05 PM
- 0
Adobe fixes patch bypass for exploited ColdFusion CVE-2023-29298 flaw

Adobe released an emergency ColdFusion security update that fixes critical vulnerabilities, including a fix for a new zero-day exploited in attacks.
- Lawrence Abrams
- July 19, 2023
- 04:37 PM
- 0
Hackers exploiting critical WordPress WooCommerce Payments bug

Hackers are conducting widespread exploitation of a critical WooCommerce Payments plugin to gain the privileges of any users, including administrators, on vulnerable WordPress installation.
- Lawrence Abrams
- July 17, 2023
- 05:08 PM
- 1
Zimbra urges admins to manually fix zero-day exploited in attacks

Zimbra urged admins today to manually fix a zero-day vulnerability actively exploited to target and compromise Zimbra Collaboration Suite (ZCS) email servers.
- Sergiu Gatlan
- July 13, 2023
- 01:54 PM
- 0
Microsoft: Unpatched Office zero-day exploited in NATO summit attacks

Microsoft disclosed today an unpatched zero-day security bug in multiple Windows and Office products exploited in the wild to gain remote code execution via malicious Office documents.
- Sergiu Gatlan
- July 11, 2023
- 02:23 PM
- 2
Microsoft July 2023 Patch Tuesday warns of 6 zero-days, 132 flaws

Today is Microsoft's July 2023 Patch Tuesday, with security updates for 132 flaws, including six actively exploited and thirty-seven remote code execution vulnerabilities.
- Lawrence Abrams
- July 11, 2023
- 01:49 PM
- 0
CISA warns govt agencies to patch actively exploited Android driver

CISA ordered federal agencies today to patch a high-severity Arm Mali GPU kernel driver privilege escalation flaw added to its list of actively exploited vulnerabilities and addressed with this month's Android security updates.
- Sergiu Gatlan
- July 07, 2023
- 02:54 PM
- 0
Android July security updates fix three actively exploited bugs

Google has released the monthly security updates for Android operating system, which comes with fixes for 46 vulnerabilities. Three of the issues are likely actively exploited in the wild.
- Bill Toulas
- July 06, 2023
- 05:44 AM
- 0
300,000+ Fortinet firewalls vulnerable to critical FortiOS RCE bug

Hundreds of thousands of FortiGate firewalls are vulnerable to a critical security issue identified as CVE-2023-27997, almost a month after Fortinet released an update that addresses the problem.
- Bill Toulas
- July 03, 2023
- 07:54 AM
- 1
Hackers exploit zero-day in Ultimate Member WordPress plugin with 200K installs

Hackers exploit a zero-day privilege escalation vulnerability in the 'Ultimate Member' WordPress plugin to compromise websites by bypassing security measures and registering rogue administrator accounts.
- Bill Toulas
- June 30, 2023
- 03:49 PM
- 2
VMware warns of critical vRealize flaw exploited in attacks

VMware updated a security advisory published two weeks ago to warn customers that a now-patched critical vulnerability allowing remote code execution is being actively exploited in attacks.
- Sergiu Gatlan
- June 20, 2023
- 03:46 PM
- 0
Android security update fixes Mali GPU bug exploited as zero-day

Google has released the monthly security update for the Android platform, adding fixes for 56 vulnerabilities, five of them with a critical severity rating and one exploited since at least last December.
- Bill Toulas
- June 06, 2023
- 09:19 AM
- 0
Google fixes new Chrome zero-day flaw with exploit in the wild

Google has released a security update for Chrome web browser to address the third zero-day vulnerability that hackers exploited this year.
- Bill Toulas
- June 06, 2023
- 07:27 AM
- 0
Zyxel shares tips on protecting firewalls from ongoing attacks

Zyxel has published a security advisory containing guidance on protecting firewall and VPN devices from ongoing attacks and detecting signs of exploitation.
- Bill Toulas
- June 03, 2023
- 10:06 AM
- 0
Hackers exploit critical Zyxel firewall flaw in ongoing attacks

Hackers are performing widespread exploitation of a critical-severity command injection flaw in Zyxel networking devices, tracked as CVE-2023-28771, to install malware.
- Bill Toulas
- May 31, 2023
- 01:54 PM
- 0