Security – Page 142 – TheCyberThrone

SolarWinds Patches Several Vulnerabilities June 2024

SolarWinds patches several high-severity vulnerabilities in Serv-U and the SolarWinds Platform. The vulnerabilities affect Platform 2024.1 SR 1 and previous versions. The first vulnerability tracked as CVE-2024-28996 with a CVSS…

PravinKarthik June 8, 2024

Lockbit victimized Panaroma EyeCare

A cyber-attack on a US Healthcare provider that supports eye clinics leads towards a leakage of 400,000 people sensitive healthcare information during last year. Colorado-based Panorama Eyecare in a notification…

PravinKarthik June 8, 2024

Critical RCE Flaw in PHP Patch it – CVE-2024-4577

A critical remote code execution vulnerability in the PHP programming language by the researchers from the firm DEVCORE, the vulnerability could potentially allow unauthenticated attackers to take full control of…

PravinKarthik June 7, 2024

Tenable plans to acquire CSPM Startup Eureka Security

Tenable announced it plans to acquire Israeli CSPM platform startup Eureka Security. Eureka was founded in 2021, and it offers services to security teams for mitigating the risk of data…

PravinKarthik June 7, 2024

RansomHub Predessor is Believed to be Knight ransomware

The RansomHub ransomware is believed to be a rebranded version of Knight ransomware that came into evolution last year. Knight ransomware target is multiple platforms, including Windows, Linux, macOS, ESXi,…

PravinKarthik June 6, 2024

Synnovis Ransomware attack leads to healthcare disruption in London

Hospitals (Guy’s and St Thomas’, King’s College Hospital)in London have been forced to cancel operations and divert emergency patients following a cyber-attack on a critical supplier. Due to a ransomware…

PravinKarthik June 6, 2024

Apache Wicket Fixes Critical Vulnerability CVE-2024-36522

The Apache Wicket Project Management Committee (PMC) has released security to address a critical remote code execution vulnerability, stemmed from a potential XSLT injection attack, enabling malicious actors to execute…

PravinKarthik June 5, 2024

CISA adds CVE-2017-3506 to KEV Catalog

The US CISA added an old Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog after it was seen being exploited by Chinese hackers to deploy cryptocurrency miners. The vulnerability,…

PravinKarthik June 4, 2024