Tag

Zerodayvulnerability

All articles tagged with #zerodayvulnerability

cybersecurity1 year ago•2 min saved

"Palo Alto Networks Addresses Zero-Day Exploits in Firewalls"

Palo Alto Networks has released hotfixes for a zero-day vulnerability (CVE-2024-3400) actively exploited since March 26th to backdoor PAN-OS firewalls, affecting versions 10.2, 11.0, and 11.1. Threat actors can exploit it remotely to gain root code execution, prompting the company to issue hotfixes and advise disabling device telemetry on vulnerable devices. Security firm Volexity confirmed active exploitation and linked it to state-sponsored threat actors, while CISA has ordered federal agencies to apply threat mitigation or disable telemetry within a week.

via BleepingComputer|

#cybersecurity #exploitedvulnerability #firewallsecurity

technology-cybersecurity2 years ago•3 min saved

"Kaspersky Exposes 'Operation Triangulation': The Most Advanced iPhone Exploit Campaign Using Undocumented Hardware Vulnerabilities"

Kaspersky's 'Operation Triangulation' report details a sophisticated iOS malware attack, dubbed the most advanced seen by the firm, which exploits four zero-day vulnerabilities in Apple's A12 - A16 Bionic SoCs. Initiated via a zero-click iMessage, the malware gains root access to iPhones, allowing full control over the device without user interaction. Although patches have been released for some vulnerabilities, the malware has been updated for newer iOS versions, and the best defense is to keep iOS updated. Kaspersky's investigation continues, highlighting the challenges of hardware security and the risks of relying on security through obscurity.

via Notebookcheck.net|

##iosattack #iphonemalware