Vulnerabilities | KITEFALL

Android Update Patches Two Exploited Vulnerabilities 2025-04-08 15:09 SecurityWeek
ESET Vulnerability Exploited for Stealthy Malware Execution 2025-04-08 15:09 SecurityWeek
WhatsApp Vulnerability Could Facilitate Remote Code Execution 2025-04-08 15:09 SecurityWeek
SAP Patches Critical Code Injection Vulnerabilities 2025-04-08 15:09 SecurityWeek
Google Patched Android 0-Day Vulnerability Exploited in the Wild 2025-04-08 14:19 Cyber Security News
Google’s latest security update for Android patches critical security flaws exploited by hackers 2025-04-08 14:02 The Times of India
Actively exploited vulnerabilities patched on Android in latest security update 2025-04-08 13:51 TechRadar Pro
Android owners told to update NOW as Google reveals 60 bugs – and one lets hackers unlock your phone without a passcode 2025-04-08 12:05 The Scottish Sun
Two Critical Bugs Targeting Android Phones- Here’s How to Stay Safe 2025-04-08 11:51 PhoneWorld
Oracle quietly confirms public cloud data breach, customer data stolen" target="_self" data-before-rewrite-localise="/pro/security/oracle-quietly-confirms-public-cloud-data-breach-customer-data-stolen 2025-04-08 11:18 TechRadar
Google Releases Android Update to Patch Two Actively Exploited Vulnerabilities 2025-04-08 09:41 The Hacker News
Google fixed two actively exploited Android zero-days 2025-04-08 09:41 Security Affairs
CISA Adds CrushFTP Vulnerability to KEV Catalog Following Confirmed Active Exploitation 2025-04-08 09:41 The Hacker News
Threat Actors Setting Up Persistent Access to Hosts Hacked in CrushFTP Attacks 2025-04-08 09:21 SecurityWeek
PoC Exploit Reveals SSH Key Exposure via Yelp Vulnerability on Ubuntu 2025-04-08 08:01 GBHackers
WhatsApp for Windows Flaw Allowed Remote Code Execution via File Attachments 2025-04-08 08:01 GBHackers
WhatsApp Vulnerability Let Attackers Execute Malicious Code Via Attachments 2025-04-08 08:01 Cyber Security News
Apollo Router Vulnerability Enables Resource Exhaustion via Optimization Bypass 2025-04-08 08:01 GBHackers
PoC Exploit Released for Yelp Flaw that Exposes SSH Keys on Ubuntu Systems 2025-04-08 08:01 Cyber Security News
Google’s Android Update—Bad News For Samsung And Pixel Users 2025-04-08 06:14 Forbes
Oracle says its cloud was in fact compromised 2025-04-08 02:43 The Register
5 Non-Human Identity Breaches That Workload IAM Could Have Prevented 2025-04-08 02:41 Security Boulevard
Google addresses 2 actively exploited vulnerabilities in security update 2025-04-08 02:09 CyberScoop
ToddyCat Attackers Exploited ESET Command Line Scanner Vulnerability to Conceal Their Tool 2025-04-08 01:00 GBHackers
Google just fixed two critical Android zero-days and 60 other flaws — update your phone right now 2025-04-07 23:50 Tom's Guide
U.S. CISA adds Ivanti Connect Secure, Policy Secure and ZTA Gateways flaw to its Known Exploited Vulnerabilities catalog 2025-04-07 23:42 Security Affairs
These Robot Dogs Kept Going Viral on Social Media — Turns Out, They Have a Spying Backdoor 2025-04-07 23:19 ZME Science
Kamailio 2025-04-07 22:50 Linux Security
libdbd-mysql-perl 2025-04-07 22:50 Linux Security
UK’s Data Protection Regulator Fines a UK SaaS Provider ~$4 Million Following a Ransomware Incident 2025-04-07 19:26 JD Supra - California
Flaw in ESET security software used to spread malware from ToddyCat group 2025-04-07 18:43 The Record
Still using WinRAR? It has a worrying security flaw that could let hackers hijack your Windows device 2025-04-07 18:24 TechRadar Pro
ToddyCat Hackers Exploit ESET’s Command Line Scanner Vulnerability to Evade Detection 2025-04-07 18:00 Cyber Security News
20-Year-Old Scattered Spider Hacker Pleads Guilty Of Sophisticated Ransomware Attacks 2025-04-07 18:00 Cyber Security News
MediaTek Releases Security Patch to Fix Vulnerabilities in Mobile and IoT Devices 2025-04-07 17:57 GBHackers
CISA adds Ivanti Connect Secure vulnerability to KEV catalog 2025-04-07 17:28 Cybersecurity Dive
⚡ Weekly Recap: VPN Exploits, Oracle's Silent Breach, ClickFix Surge and More 2025-04-07 17:17 The Hacker News
The controversial case of the threat actor EncryptHub 2025-04-07 16:50 Security Affairs
Hackers are targeting Ivanti VPN users again – here’s what you need to know 2025-04-07 12:23 IT Pro
WinRAR MotW bypass flaw fixed, update ASAP (CVE-2025-31334) 2025-04-07 12:22 Help Net Security
Signalgate solved? Report claims journalist’s phone number accidentally saved under name of Trump official 2025-04-07 11:13 The Register
Bitdefender GravityZone Console PHP Vulnerability Let Attackers Execute Arbitrary Commands 2025-04-07 10:17 Cyber Security News
Critical pgAdmin Vulnerability Let Attackers Execute Remote Code 2025-04-07 10:17 Cyber Security News
Dell PowerProtect Systems Vulnerability Let Remote Attackers Execute Arbitrary Commands 2025-04-07 10:17 Cyber Security News
New Sakura RAT Emerges on GitHub, Successfully Evading AV & EDR Protections 2025-04-07 10:17 Cyber Security News
Bitdefender GravityZone Console PHP Vulnerability Lets Hackers Execute Arbitrary Commands 2025-04-07 10:15 GBHackers
Critical pgAdmin Flaw Allows Remote Code Execution 2025-04-07 10:15 GBHackers
Dell PowerProtect Flaw Allows Remote Attackers to Execute Arbitrary Commands 2025-04-07 10:15 GBHackers
Python JSON Logger Vulnerability Enables Remote Code Execution – PoC Released 2025-04-07 10:15 GBHackers
Week in review: Probing activity on Palo Alto Networks GlobalProtect portals, Patch Tuesday forecast 2025-04-06 12:55 Help Net Security
ghostscript 2025-47818d27ba 2025-04-05 23:14 Linux Security
Microsoft Credits EncryptHub, Hacker Behind 618+ Breaches, for Disclosing Windows Flaws 2025-04-05 19:26 The Hacker News
“IngressNightmare” Critical RCE Vulnerabilities in Kubernetes NGINX Clusters Let Attackers Gain Full Control 2025-04-05 13:16 Cyber Security News
DLA-4114-1: zfs-linux security update 2025-04-05 09:10 Linux Security
CISA warns of latest Ivanti firewall bug being exploited by suspected Chinese hackers 2025-04-05 04:08 The Record
Ivanti Connect Secure RCE Vulnerability Actively Exploited in the Wild – Apply Patch Now! 2025-04-05 01:15 Cyber Security News
Vite Development Server Flaw Allows Attackers Bypass Path Restrictions 2025-04-05 01:15 GBHackers
Chinese Hackers Exploit Ivanti VPN Vulnerability to Deliver Malware Payloads 2025-04-05 01:15 GBHackers
CISA Adds Actively Exploits Ivanti Connect Secure Vulnerability in Known Exploited Catalog 2025-04-05 01:15 Cyber Security News
Ivanti Fully Patched Connect Secure RCE Vulnerability That Actively Exploited in the Wild 2025-04-05 01:09 GBHackers
Chinese Espionage Group Targeting Legacy Ivanti VPN Devices 2025-04-05 01:00 Bank Information Security - New Jersey
EncryptHub Ransomware Unmasked Using ChatGPT & OPSEC Mistakes 2025-04-04 23:21 Cyber Security News
2025:1142-1 important: google-guest-agent 2025-04-04 21:39 Linux Security
Linux kernel (NVIDIA) 2025-04-04 21:39 Linux Security
TRAILBLAZE & BRUSHFIRE Malware Deployed in Ivanti Apps/Services 2025-04-04 21:10 TechWorm
Apache Parquet users warned of maximum risk security flaw, told to patch now 2025-04-04 18:30 TechRadar Pro
Disclosure Drama Clouds CrushFTP Vulnerability Exploitation 2025-04-04 16:30 Dark Reading
Big hole in big data: Critical deserialization bug in Apache Parquet allows RCE 2025-04-04 14:37 CSO
Critical Apache Parquet Vulnerability Leads to Remote Code Execution 2025-04-04 13:50 SecurityWeek
New Apple Attack Warning—If You Own An Older iPhone, Update It Now 2025-04-04 13:04 Forbes
React Router Flaw Exposes Web Apps to Cache Poisoning & WAF Bypass Attacks 2025-04-04 12:49 Cyber Security News
Critical Apache Parquet RCE Vulnerability Lets Attackers Run Malicious Code 2025-04-04 12:49 Cyber Security News
Apache Traffic Server Flaw Allows Request Smuggling Attacks 2025-04-04 12:41 GBHackers
OpenVPN Flaw Allows Attackers Crash Servers and Run Remote Code 2025-04-04 12:41 GBHackers
Critical Apache Parquet Vulnerability Allows Remote Code Execution 2025-04-04 12:41 GBHackers
Researcher Finds New Way to Exploit Intel CPU Flaws 2025-04-04 12:31 Security Review
Chinese State Hackers Exploiting Newly Disclosed Ivanti Flaw 2025-04-04 12:11 Infosecurity Magazine
Tj-actions Supply Chain Attack Traced Back to Single GitHub Token Compromise 2025-04-04 12:11 Infosecurity Magazine
Critical flaw in Apache Parquet’s Java Library allows remote code execution 2025-04-04 11:34 Security Affairs
Critical Ivanti Flaw Actively Exploited to Deploy TRAILBLAZE and BRUSHFIRE Malware 2025-04-04 11:18 The Hacker News
Chinese Hackers Actively Exploiting Ivanti VPN Vulnerability to Deploy Malware 2025-04-04 11:13 Cyber Security News
OpenVPN Vulnerability Let Attackers Crash Servers & Execute Remote Code 2025-04-04 06:46 Cyber Security News
Apache Traffic Server Vulnerability Let Attackers Smuggle Requests 2025-04-04 06:46 Cyber Security News
Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code 2025-04-04 06:09 The Hacker News
China-backed espionage group hits Ivanti customers again 2025-04-04 05:42 CyberScoop
2025:1139-1 important: the Linux Kernel 2025-04-04 02:05 Linux Security
Linux kernel 2025-04-04 02:05 Linux Security
China-linked group UNC5221 exploited Ivanti Connect Secure zero-day since mid-March 2025-04-04 01:08 Security Affairs
Oracle reportedly informs clients of system breach following earlier denial 2025-04-03 23:32 SiliconANGLE
Google’s Quick Share for Windows Vulnerability Allows Remote Code Execution 2025-04-03 20:58 GBHackers
Hackers Exploit Apache Tomcat Flaw to Hijack Servers and Steal SSH Credentials 2025-04-03 20:58 GBHackers
SonicWall Firewall Vulnerability Enables Unauthorized Access 2025-04-03 20:56 GBHackers
Cisco AnyConnect VPN Server Vulnerability Allows Attackers to Trigger DoS 2025-04-03 20:56 GBHackers
Cybersecurity Experts Slam Oracle's Handling of Big Breach 2025-04-03 18:47 Bank Information Security - New Jersey
Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457) 2025-04-03 18:24 Help Net Security
Oracle quietly admits data breach, days after lawsuit accused it of cover-up 2025-04-03 16:28 CSO
Cisco confirms cyberattacks on Smart Licensing Utility flaw 2025-04-03 15:47 Cybersecurity Dive
Vite Arbitrary File Read Vulnerability (CVE-2025-31125) 2025-04-03 14:31 Security Boulevard
Attackers are leveraging Cisco Smart Licensing Utility static admin credentials (CVE-2024-20439) 2025-04-03 13:16 Help Net Security
Google Hastily Patches Chrome Zero-Day Exploited by APT 2025-03-26 11:27 Dark Reading