Your daily dose of relevant cybersecurity advisories, industry news, and product updates for October 12, 2023.
Alerts & Advisories
- Apple fixes iOS Kernel zero-day vulnerability on older iPhones
- Backdoor Malware Found on WordPress Website Disguised as Legitimate Plugin
- HTTP/2 Rapid Reset Zero-Day Vulnerability Exploited to Launch Record DDoS Attacks
- Adobe Acrobat Reader Vuln Now Under Attack
- Microsoft Warns of Nation-State Hackers Exploiting Critical Atlassian Confluence Vulnerability
- Microsoft Patch Tuesday updates for October 2023 fixed three actively exploited zero-day flaws
- Citrix Devices Under Attack: NetScaler Flaw Exploited to Capture User Credentials
- Google Chrome Use-after-free Flaw Let Attackers Perform Heap Exploitation
- LinkedIn Smart Links Abused in Phishing Campaign Targeting Microsoft Accounts
- Malicious NuGet Package Targeting .NET Developers with SeroXen RAT
- One-Click ‘Gnome’ Exploit Is a Supply Chain Risk for Linux OSes
- Looney Tunables’ Linux Flaw Sees Snowballing Proof-of-Concept Exploits
- High-Severity Flaws in ConnectedIO’s 3G/4G Routers Raise Concerns for IoT Security
- Patch Now: Massive RCE Campaign Wrangles Routers Into Botnet
- Ransomware attacks now target unpatched WS_FTP servers
- A new Magecart campaign hides the malicious code in 404 error page
