February 2024 – Page 4 – TheCyberThrone

Microsoft Azure Environment targeted by malicious campaign

Proofpoint has observed a new malicious campaign targeting dozens of Microsoft Azure environments. The campaign started in November 2023 and is still active, Proofpoint warned in a security advisory published…

PravinKarthik February 12, 2024

CISA adds Fortinet bug to its KEV Catalog

The U.S. CISA adds Fortinet FortiOS Out-of-Bound write vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. Fortinet has warned that the recently discovered critical remote code execution vulnerability in FortiOS…

PravinKarthik February 11, 2024

Hyundai Motor Europe Suffers a Data breach

Hyundai Motor Europe was breached by the Black Basta ransomware. The threat actors claim to have stolen three terabytes of data from the company. In January, the car maker experienced…

PravinKarthik February 10, 2024

PoC for Oracle WebLogic RCE Flaw -CVE-2024-20931

PoC exploit has been published for Oracle WebLogic Server vulnerability, CVE-2024-20931 with a CVSS of 7.5, leading to arbitrary code execution and affects the Oracle WebLogic Server, particularly its T3/IIOP…

PravinKarthik February 9, 2024

Cisco Patches Critical Vulnerabilities in Expressway Devices

Cisco has addressed several vulnerabilities in its Expressway Series collaboration gateways. Two of the critical vulnerabilities tracked as CVE-2024-20252 and CVE-2024-20254 can lead to cross-site request forgery (CSRF) attacks. An…

PravinKarthik February 8, 2024

Fortinet fixes critical vulnerabilities in FortiSIEM

Fortinet has warned that two critical-severity vulnerabilities in FortiSIEM could lead to remote code execution. The issues, tracked as CVE-2024-23108 and CVE-2024-23109 both has a CVSS score of 10, as…

PravinKarthik February 7, 2024

Canon patches several vulnerabilities

Canon has released software updates that patch seven critical-severity vulnerabilities impacting several small office printer models. The issues, described as buffer overflow bugs, can be exploited over the network for…

PravinKarthik February 6, 2024

Microsoft fixes Edge Browser Vulnerability – CVE-2024-21399

Microsoft has released a security update for Microsoft Edge browser, addressing several vulnerabilities. One high severity vulnerability is addressed, and it is tracked as , CVE-2024-21399. This vulnerability, if exploited,…

PravinKarthik February 5, 2024