The Information Highway

The Information Highway

D-Link won’t fix critical flaw affecting 60,000 older NAS devices

D-Link-headpic

More than 60,000 D-Link network-attached storage devices that have reached end-of-life are vulnerable to a command injection vulnerability with a publicly available exploit.

Continue reading
  315 Hits

Oracle WebLogic Server vulnerability

Threat-Advisory-Banner3

Threat update

There has been active exploitation of a critical operating system (OS) command injection vulnerability, known as CVE-2017-3506, found in the Oracle WebLogic Server. The impact can be severe, ranging from financial loss to reputational damage.

Continue reading
  469 Hits

Critical vulnerability discovered in FortiSIEM

Threat-Advisory-Banner3

Threat update

A new critical command injection vulnerability, CVE-2024-23108, was found in Fortinet's FortiSIEM solution. This vulnerability poses significant risks to organizations using the solution. 

Continue reading
  489 Hits

22,500 Palo Alto firewalls "possibly vulnerable" to ongoing attacks

palo-alto-networks

Approximately 22,500 exposed Palo Alto GlobalProtect firewall devices are likely vulnerable to the CVE-2024-3400 flaw, a critical command injection vulnerability that has been actively exploited in attacks since at least March 26, 2024.

Continue reading
  633 Hits

Palo Alto Networks warns of PAN-OS firewall zero-day used in attacks

Palo_Alto_Networks

Today, Palo Alto Networks warns that an unpatched critical command injection vulnerability in its PAN-OS firewall is being actively exploited in attacks.

Continue reading
  874 Hits

Top Breaches Of 2023

Customers Affected In T-Mobile Breach
Accounts Affected In MOVEit Breach
Customers Affected In MCNA Insurance Data Breach
Individuals Affected In PharMerica Data Breach
Users Affected In ChatGPT Major Data Breach
*Founder Shield End of Year 2023