Attackers – NuclearCoffee

Hacker news

Unpatched Versa Concerto Flaws Let Attackers Escape Docker and Compromise Host

On May 22, 2025 10:26 pm, by NuclearCoffee

Cybersecurity researchers have uncovered multiple critical security vulnerabilities impacting the Versa Concerto network security and SD-WAN orchestration platform that could be exploited to take control of susceptible instances…. Continue reading

Hacker news

SonicWall Patches 3 Flaws in SMA 100 Devices Allowing Attackers to Run Code as Root

On May 08, 2025 4:07 pm, by NuclearCoffee

SonicWall has released patches to address three security flaws affecting SMA 100 Secure Mobile Access (SMA) appliances that could be fashioned to result in remote code execution. The… Continue reading

Pokemon

Max Attackers Tier List (May 2025)

On May 07, 2025 7:28 am, by NuclearCoffee

Explore our in-depth Tier List of best Max Attackers to use in Pokémon GO’s Max Battles. Our Max Attackers Tier List is sorted into five categories, starting from… Continue reading

Hacker news

Fake Security Plugin on WordPress Enables Remote Admin Access for Attackers

On May 01, 2025 5:44 pm, by NuclearCoffee

Cybersecurity researchers have shed light on a new campaign targeting WordPress sites that disguises the malware as a security plugin. The plugin, which goes by the name “WP-antymalwary-bot.php,”… Continue reading

Hacker news

Critical Commvault Command Center Flaw Enables Attackers to Execute Code Remotely

On Apr 24, 2025 9:13 pm, by NuclearCoffee

A critical security flaw has been disclosed in the Commvault Command Center that could allow arbitrary code execution on affected installations. The vulnerability, tracked as CVE-2025-34028, carries a… Continue reading

Hacker news

GCP Cloud Composer Bug Let Attackers Elevate Access via Malicious PyPI Packages

On Apr 22, 2025 4:07 pm, by NuclearCoffee

Cybersecurity researchers have detailed a now-patched vulnerability in Google Cloud Platform (GCP) that could have enabled an attacker to elevate their privileges in the Cloud Composer workflow orchestration… Continue reading

Hacker news

Fortinet Warns Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink Exploit

On Apr 11, 2025 7:34 pm, by NuclearCoffee

Fortinet has revealed that threat actors have found a way to maintain read-only access to vulnerable FortiGate devices even after the initial access vector used to breach the… Continue reading

Hacker news

Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code

On Apr 04, 2025 10:26 am, by NuclearCoffee

A maximum severity security vulnerability has been disclosed in Apache Parquet’s Java Library that, if successfully exploited, could allow a remote attacker to execute arbitrary code on susceptible… Continue reading

Hacker news

Critical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization Checks

On Mar 25, 2025 12:21 am, by NuclearCoffee

A critical security flaw has been disclosed in the Next.js React framework that could be potentially exploited to bypass authorization checks under certain conditions. The vulnerability, tracked as… Continue reading

Hacker news

Critical mySCADA myPRO Flaws Could Let Attackers Take Over Industrial Control Systems

On Mar 19, 2025 8:01 am, by NuclearCoffee

Cybersecurity researchers have disclosed details of two critical flaws impacting mySCADA myPRO, a Supervisory Control and Data Acquisition (SCADA) system used in operational technology (OT) environments, that could… Continue reading

Tag: Attackers

Stay Connected