A critical vulnerability has been discovered in the open-source Cacti framework: it enables an authenticated attacker to remotely execute arbitrary code.
Read full article →Critical RCE vulnerability fixed in Cacti
📟 News
Date: 01/02/2025
Hackers use vulnerabilities in SimpleHelp RMM to attack corporate networks
📟 News
Date: 30/01/2025
Experts believe that recently patched vulnerabilities in SimpleHelp Remote Monitoring and Management (RMM) were used by attackers to gain initial access to corporate networks.
Read full article →Google to disable Sync in older Chrome versions
📟 News
Date: 29/01/2025
Google announced that in early 2025, Chrome Sync will be disabled in Chrome versions older than four years.
Read full article →J-magic backdoor attacked Juniper Networks devices using ‘magic packets’
📟 News
Date: 28/01/2025
A massive backdoor attack targeting Juniper routers often used as VPN gateways has been uncovered. The devices were attacked by the J-magic malware that starts a reverse shell only after detecting a ‘magic packet’ in network traffic.
Read full article →YouTube plays hour-long ads to users with ad blockers
📟 News
Date: 27/01/2025
Users complain that YouTube plays very long unskippable ads. Sometimes such ads are longer than the video the person is watching.
Read full article →Your guide to NTLM relay, Part 2: Delivering relay attacks
Date: 27/01/2025
NTLM relay attacks aren’t new to pentesters. In most cases, the main prerequisite for a successful relay attack isn’t a vulnerability, but an infrastructure misconfiguration; this is why such attacks are often used in real-life situations. This article discusses relay attacks and techniques used to deliver them – assuming that you have already hijacked NTLM authentication.
Read full article →Zyxel firewalls reboot due to flawed update
📟 News
Date: 27/01/2025
Zyxel warned its customers that a recent signature update may cause critical errors in USG FLEX and ATP series firewalls. As a result, devices go into infinite reboot loops.
Read full article →