September 2023 – Page 5 – TheCyberThrone

GitLab Addresses Critical Vulnerability -CVE-2023-4998

Researchers have discovered vulnerability in GitLab’s armor that affects both GitLab Community Edition (CE) and Enterprise Edition (EE) spanning versions 13.12 to 16.2.7 and versions 16.3 to 16.3.4. The vulnerability…

PravinKarthik September 20, 2023

Crowdstrike New Offerings and Bionic.ai Acquisition

CrowdStrike has announced new products extending its Falcon protection line. It also shared an update on the acquisition of Bionic.ai for cash and stock for an undisclosed amount. The companies…

PravinKarthik September 20, 2023

Microsoft AI exposed terabytes of data accidentally

Microsoft has accidentally made 38 Tb of internal data, including passwords, publicly accessible through a GitHub repository. Researchers discovered the issue on June 22 and reported it to Microsoft shortly…

PravinKarthik September 19, 2023

CISA KEV Update – September 2023

CISA has added eight new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. With this addition, the catalog numbers surpasses 1000 vulnerabilities CVE-2022-22265 Samsung Mobile Devices Use-After-Free…

PravinKarthik September 19, 2023

QNAP Fixes multiple Vulnerabilities in its product

QNAP has warned customers to install firmware updates that fix five security vulnerabilities affecting its NAS devices. These vulnerabilities could allow attackers to execute commands, launch denial-of-service attacks. CVE-2023-23362 :…

PravinKarthik September 18, 2023

Microsoft Fixes Several Vulnerabilities on Chromium Edge Browser

Microsoft has patched three security vulnerabilities in Microsoft Edge (Chromium-based) that could allow attackers to spoof websites, gain elevated privileges on the system, or even escape the browser sandbox. Microsoft…

PravinKarthik September 18, 2023

BatLoader targets WebEx Users with malicious AD campaigns

Researchers have spotted a malvertising campaign targeting corporate users who are downloading the widely used web conferencing application, Webex. The malicious threat actors have purchased an advertisement that mimics Cisco's…

PravinKarthik September 17, 2023

Google Settles lawsuit with California

Google will pay $93 million in a settlement it reached with California Attorney General Rob Bonta, resolving allegations that the company’s location-privacy practices violated the state’s consumer protection laws. The California Department…

PravinKarthik September 17, 2023