Attackers have used two zero-day vulnerabilities (CVE-2024-20353, CVE-2024-20359) to install backdoors on government Cisco ASA appliances.| Help Net Security
Google releases a Chrome update that fixes a yet another 0-day vulnerability, which appears to be the first Chrome zero-day in 2024| Gridinsoft Blogs
The Lapsus$ hack group has published the source codes for Bing, Cortana and other Microsoft products stolen from an internal DevOps server.| Gridinsoft Blogs
Fortinet has patched a FortiOS authentication bypass vulnerability (CVE-2024-55591) that has been exploited as a zero-day by attackers.| Help Net Security
Fortinet has publicly released information about CVE-2024-47575, a FortiManager flaw under active exploitation.| Help Net Security
本文作者:马延龙,涂凌鸣,叶根深,刘宏达 当我们研究Botnet时,我们一般看到的是攻击者通过N-day漏洞植入Bot程序。但慢慢的,我们看到一个新的趋势,一些攻击者开始更多地利用0-day漏洞发起攻击,利用手段也越发成熟。我们希望安全社区关注到这一现象,积极合作共同应对0-day漏洞攻击威胁。 背景介绍 从2019年8月30号开始,360Netlab未知威胁检测系统持续监测到多个攻击...| 360 Netlab Blog - Network Security Research Lab at 360
Apple fixes 2 zero-days exploited to breach macOS systems (CVE-2024-44309, CVE-2024-44308)| Help Net Security
Update 2019.12.04: Recently we have received quite a few requests of comment about this blog. We feel it necessary to list following facts here: 1. Kenneth Crurrin Schuchman, with nicknames "Nexus" or "Nexus-Zeta", a 21 years old young man, has pleaded guilty on 2019.09.03 to the| 360 Netlab Blog - Network Security Research Lab at 360
Netgear R7000 SOHO Device Exploitation After a long day of hard research, it’s fun to relax, kick back, and do something easy. While modern ...| blog.grimm-co.com