Exploited – Page 4 – NuclearCoffee

Hacker news

2,500+ Truesight.sys Driver Variants Exploited to Bypass EDR and Deploy HiddenGh0st RAT

On Feb 25, 2025 1:17 pm, by NuclearCoffee

A large-scale malware campaign has been found leveraging a vulnerable Windows driver associated with Adlice’s product suite to sidestep detection efforts and deliver the Gh0st RAT malware. “To… Continue reading

Hacker news

Two Actively Exploited Security Flaws in Adobe and Oracle Products Flagged by CISA

On Feb 25, 2025 5:08 am, by NuclearCoffee

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two security flaws impacting Adobe ColdFusion and Oracle Agile Product Lifecycle Management (PLM) to its Known Exploited Vulnerabilities… Continue reading

Hacker news

Cisco Confirms Salt Typhoon Exploited CVE-2018-0171 to Target U.S. Telecom Networks

On Feb 21, 2025 8:46 am, by NuclearCoffee

Cisco has confirmed that a Chinese threat actor known as Salt Typhoon gained access by likely abusing a known security flaw tracked as CVE-2018-0171, and by obtaining legitimate… Continue reading

Hacker news

Microsoft Patches Actively Exploited Power Pages Privilege Escalation Vulnerability

On Feb 20, 2025 8:20 am, by NuclearCoffee

Microsoft has released security updates to address two Critical-rated flaws impacting Bing and Power Pages, including one that has come under active exploitation in the wild. The vulnerabilities… Continue reading

Hacker news

CISA Adds Palo Alto Networks and SonicWall Flaws to Exploited Vulnerabilities List

On Feb 19, 2025 5:53 am, by NuclearCoffee

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added two security flaws impacting Palo Alto Networks PAN-OS and SonicWall SonicOS SSLVPN to its Known Exploited Vulnerabilities… Continue reading

Hacker news

PostgreSQL Vulnerability Exploited Alongside BeyondTrust Zero-Day in Targeted Attacks

On Feb 14, 2025 5:54 am, by NuclearCoffee

Threat actors who were behind the exploitation of a zero-day vulnerability in BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) products in December 2024 likely also exploited… Continue reading

Tag: Exploited

2,500+ Truesight.sys Driver Variants Exploited to Bypass EDR and Deploy HiddenGh0st RAT

Two Actively Exploited Security Flaws in Adobe and Oracle Products Flagged by CISA

Cisco Confirms Salt Typhoon Exploited CVE-2018-0171 to Target U.S. Telecom Networks

Microsoft Patches Actively Exploited Power Pages Privilege Escalation Vulnerability

CISA Adds Palo Alto Networks and SonicWall Flaws to Exploited Vulnerabilities List

PostgreSQL Vulnerability Exploited Alongside BeyondTrust Zero-Day in Targeted Attacks

Stay Connected