Microsoft Patch Tuesday June 2024
Microsoft addresses 51 CVEs in its June 2024 Patch Tuesday release with one rated as critical and no zero-day or publicly disclosed vulnerabilities. This includes CVE-2023-50868 that’s been issued by…
PoC Exploit released for Microsoft Sharepoint Flaw- CVE-2024-30043
A security researcher has published a PoC exploit code for a vulnerability in Microsoft SharePoint Server. The vulnerability tracked as CVE-2024-30043 exists in the Microsoft SharePoint Server due to the…
Snowflake breach aftermath
Mandiant has come with an assessment that at least 165 organizations were targeted by a recent hacking campaign against Snowflake customers. Mandiant tracking the cybercrime group behind the hacking campaign…
PoC Exploit released for Veeam flaw CVE-2024-29849
A proof-of-concept exploit has been released for a critical authentication bypass vulnerability in Veeam Backup Enterprise Manager tracked as CVE-2024-29849. The vulnerability resides in the Veeam.Backup.Enterprise.RestAPIService.exe, a REST API server…
Posted inSecurity NewsLetter
TheCyberThrone Security Week In Review – June 08, 2024
Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings. This review is for the week ending Saturday, June 08, 2024 Apache Wicket Fixes Critical Vulnerability CVE-2024-36522 The…
SolarWinds Patches Several Vulnerabilities June 2024
SolarWinds patches several high-severity vulnerabilities in Serv-U and the SolarWinds Platform. The vulnerabilities affect Platform 2024.1 SR 1 and previous versions. The first vulnerability tracked as CVE-2024-28996 with a CVSS…
Lockbit victimized Panaroma EyeCare
A cyber-attack on a US Healthcare provider that supports eye clinics leads towards a leakage of 400,000 people sensitive healthcare information during last year. Colorado-based Panorama Eyecare in a notification…
Critical RCE Flaw in PHP Patch it – CVE-2024-4577
A critical remote code execution vulnerability in the PHP programming language by the researchers from the firm DEVCORE, the vulnerability could potentially allow unauthenticated attackers to take full control of…