July 2024 – TheCyberThrone

Google fixes critical vulnerability CVE-2024-6990 in Chrome

Google has released the latest security update for its Chrome browser, addressing several critical vulnerabilities.The latest advisory includes three significant security fixes, two classified as high severity and one as…

PravinKarthik July 31, 2024

CISA adds CVE-2024-37085 to its KEV catalog

The U.S. CISA added an authentication bypass VMware ESXi vulnerability, tracked as CVE-2024-37085 with a CVSS score of 6.8, to its Known Exploited Vulnerabilities (KEV) catalog. The flaw is an…

PravinKarthik July 31, 2024

HealthEquity suffers a data breach

HealthEquity revealed the details about data breach earlier this year led to the compromise of personal and financial information on millions of customers. A filing with the Maine Office of…

PravinKarthik July 30, 2024

MOVEit fixes High Severity Vulnerability -CVE-2024-6576

Progress Software has warned customers about a new high-severity vulnerability that could allow attackers to escalate privileges within the system. The vulnerability tracked as CVE-2024-6576 with a CVSS score of…

PravinKarthik July 30, 2024

EchoSpoofing bug in Proofpoint enabled phishing campaign

Security researchers have discovered an exploit that allowed threat actors to override Proofpoint email protections and sends millions of spoofed emails aimed at stealing funds and credit card details. Proofpoint's…

PravinKarthik July 30, 2024

CISA KEV Update Part IV – July 2024

The US CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-4879 ServiceNow Improper Input Validation Vulnerability. ServiceNow Utah, Vancouver, and Washington DC…

PravinKarthik July 29, 2024

Apache Pinot fixes CVE-2024-39676

Apache Pinot has recently disclosed a serious security vulnerability that could allow unauthorized actors to access sensitive system information, potentially leading to data leaks and security breaches. The vulnerability, tracked…

PravinKarthik July 29, 2024