Cybersecurity Threat Advisory: Critical vulnerabilities in VMware
VMware has released updates addressing four security flaws in ESXi, Workstation, and Fusion. Two out of the four flaws, CVE-2024-22252 and CVE-2024-22253, were identified as critical with CVSS scores of 9.3 for Workstation/Fusion and 8.4 for ESXi. This Cybersecurity Threat...
Cybersecurity Threat Advisory: ConnectWise critical vulnerabilities
This blog has been updated with the latest information on how Barracuda XDR has implemented detection mechanisms to help mitigate the two ConnectWise vulnerabilities. Two critical vulnerabilities have been discovered with ConnectWise ScreenConnect’s on-premises instances. These vulnerabilities could result in...
Cybersecurity Threat Advisory: The mother of all breaches (MOAB)
A massive data leak that includes information from several past breaches with a staggering 12 terabytes of data, covering at least 26 billion records, is available on the dark web. This breach involved user data from platforms such as LinkedIn,...
Cybersecurity Threat Advisory: Update on libwebp vulnerability by Google
Google has identified a critical security vulnerability within the libwebp image library, which plays a crucial role in rendering WebP format images. This vulnerability, known as CVE-2023–5129, has been assigned the highest severity rating of 10.0 on the CVSS rating...
Critical Adobe ColdFusion vulnerability
The latest cybersecurity threat advisory highlights vulnerabilities affecting Adobe ColdFusion versions 2018, 2021, and 2023, which are actively being exploited by threat actors in the wild. A successful exploitation can lead to arbitrary code execution and security feature bypass. Barracuda...
