ARGO CD Zero Day !
A zero-day vulnerability in Kubernetes development tool Argo lets malicious people steal passwords from git-crypt and other sensitive information by simply uploading a crafted Helm chart. Tracked as CVE-2022-24438 with…
Gameradon APT Attack Ukraine
The Russia-linked Gamaredon APT group attempted to compromise an unnamed Western government entity operating in Ukraine. Last month Ukrainian government was hit with destructive malware, tracked as WhisperGate, and several Ukrainian government websites were…
ESET Fixes Privilege Escalation Flaw in its Engine
ESET has released patches to address a high severity local privilege escalation vulnerability, tracked CVE-2021-37852, impacting its Windows clients. An attacker can exploit the vulnerability to misuse the AMSI scanning…
Antlion APT linked with China
A cyberespionage campaign of a China-linked APT group tracked as Antlion is using a custom backdoor called xPack in attacks aimed at financial organizations and manufacturing companies gone detected more…
SnapFuzz ! Fuzzer for Network Application
An open-source fuzzing tool was introduced by researchers to test testing network applications. SnapFuzz uses a series of techniques to speed up the testing of network protocols and overcome the timing constraints and…
ZIMBRA Zero Day ! Actively Exploited
A new cyber-espionage group has been seen abusing a zero-day vulnerability in the Zimbra collaboration suite to gain access to the email inboxes. This is exploited from china The attackers began…