Exploit – TheCyberThrone

Year 2023

TheCyberthrone’s Zero Day Vulnerabilities a review-Year 2023

This year 2023, have seen a total of 95+ security vulnerabilities have been exploited as unpatched zero-days in the wild, according to an stats. It affected a wide range of…

PravinKarthik December 25, 2023

CERT France alerts on attacks targeting VMware ESXi

CERT-FR warns that threat actors are targeting VMware ESXi servers to deploy ransomware by actively exploiting a bug tracked as CVE-2021-21974 The vulnerability is an OpenSLP heap-overflow flaw in VMware ESXi that can…

PravinKarthik February 4, 2023

ZOHO ManageEngine Vulnerability Exploit Warning

Researchers from Horizon3.ai have urged Zoho ManageEngine users to patch their software against a critical security vulnerability tracked CVE-2022-47966 after designing and releasing a PoC exploit code. Exploit developer James…

PravinKarthik January 18, 2023

ChatGPT Exploited by Threat Actors

Threat actors are using ChatGPT to develop powerful hacking tools and create new chatbots designed to mimic young girls to lure targets. ChatGPT can also code malicious software that can…

PravinKarthik January 8, 2023

Play Ransomware Exploits Exchange Server Flaw

Play ransomware group is using a new exploit in Microsoft Exchange to breach servers. The exploit chain bypasses ProxyNotShell URL rewrite mitigations to gain RCE on vulnerable servers. Threat actors…

PravinKarthik December 21, 2022

Zimbra RCE Exploited in Wild

An authentication bypass affecting Zimbra Collaboration Suite, tracked as CVE-2022-27925, is actively exploited to hack ZCS email servers worldwide. CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities…

PravinKarthik August 12, 2022

Atlassian Confluence bug exploited to install Lil backdoor

Researchers have spotted threat actors actively exploiting a security flaw in the Atlassian Confluence server (CVE-2022-26134) to deploy a new backdoor dubbed “Ljl” against several unnamed organizations. Once gaining initial…

PravinKarthik August 5, 2022

Zoom RCE bug Haunts ! Patch it

A bunch of bugs identified in Zoom that can be exploited to compromise another user over chat by sending specially crafted Extensible Messaging and Presence Protocol (XMPP) messages. Below are…

PravinKarthik May 25, 2022