6 matches found
Metasploit Wrap-Up 01/17/2025
Clarity in Cleo Exploitation Last Month, Huntress reported that several Cleo products were being attacked in the wild, including Harmony, VLTrader, and LexiCom. Cleo announced CVE-2024-50623 and that these issues were patched in 5.8.0.21, but Huntress reported the vulnerability was still in those...
Cl0p Ransomware Exploits Cleo Vulnerability, Threatens Data Leaks
SUMMARY The Cl0p ransomware group has recently claimed responsibility for exploiting a critical vulnerability in Cleo's managed file…...
⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips
This past week has been packed with unsettling developments in the world of cybersecurity. From silent but serious attacks on popular business tools to unexpected flaws lurking in everyday devices, there's a lot that might have flown under your radar. Attackers are adapting old tricks, uncovering...
Microsoft’s AI Recall Tool Is Still Sucking Up Credit Card and Social Security Numbers
Plus: The US indicts North Koreans in fake IT worker scheme, file-sharing firm Cleo warns customers to patch a vulnerability amid live attacks, and more...
a-poem (=0.12.3), active-wrapper (>=0.1.0 <=0.1.4) +167 more potentially affected by CVE-2022-42966 via cleo (>=0.6.8 <=1.0.0a5)
cleo PYPI version =0.6.8, =0.1.0, =0.1.3, =0.1.0, =0.1.1, =0.1.0, =0.1.0a0, =0.1.1.1, =0.1.0, =0.2.7, =0.0.465, =0.0.503 and more Source cves: CVE-2022-42966 Source advisory: OSV:GHSA-2P9H-CCW7-33GF...
a-poem (=0.12.3), active-wrapper (>=0.1.0 <=0.1.4) +167 more potentially affected by CVE-2022-42966 via cleo (>=0.6.8 <=1.0.0a5)
cleo PYPI version =0.6.8, =0.1.0, =0.1.3, =0.1.0, =0.1.1, =0.1.0, =0.1.0a0, =0.1.1.1, =0.1.0, =0.2.7, =0.0.465, =0.0.503 and more Source cves: CVE-2022-42966 Source advisory: OSV:PYSEC-2022-43178...