Tag

Zero Day Attacks

All articles tagged with #zero day attacks

cybersecurity2 years ago•2 min saved

Barracuda Zero-Day Attacks: Chinese Hackers Target US Government and Telecom

Suspected Chinese hackers targeted government and government-linked organizations worldwide in a series of zero-day attacks on Barracuda Email Security Gateway (ESG). A Mandiant report revealed that almost a third of the hacked appliances belonged to government agencies, with a focus on entities across the Americas. The attacks, motivated by espionage, involved the exfiltration of data from high-profile users in government and high-tech sectors. Barracuda issued patches for the vulnerability on May 20 but later discovered that the zero-day bug had been exploited for at least seven months. The FBI warned that the patches were ineffective, and compromised devices are still being targeted. Customers are advised to replace hacked appliances and investigate their networks for potential breaches.

via BleepingComputer|

#barracuda #chinese-hackers #cybersecurity

cybersecurity2 years ago•2 min saved

Microsoft's July 2023 Patch Tuesday Reveals Zero-Day Attacks and Flaws

Microsoft has issued an urgent warning about active exploitation of unpatched security flaws in its Windows and Office products by Russian spies and cybercriminals. The company is investigating reports of remote code execution vulnerabilities impacting Windows and Office users, with targeted attacks using specially-crafted Office documents. Microsoft's threat intelligence team flagged a phishing campaign targeting defense and government entities in Europe and North America, using Office zero-day exploits. The company may release an out-of-band patch before the next Patch Tuesday. In addition, Adobe has released urgent patches for critical security flaws in its InDesign and ColdFusion product lines.

via SecurityWeek|

#cybersecurity #microsoft #office