Lucene search
K

10 matches found

The Hacker News
The Hacker News
added 2025/02/24 4:58 p.m.33 views

New Malware Campaign Uses Cracked Software to Spread Lumma and ACR Stealer

Cybersecurity researchers are warning of a new campaign that leverages cracked versions of software as a lure to distribute information stealers like Lumma and ACR Stealer. The AhnLab Security Intelligence Center ASEC said it has observed a spike in the distribution volume of ACR Stealer since...

7.8CVSS7.1AI score0.60954EPSS
Exploits0
Talos Blog
Talos Blog
added 2024/10/10 6:0 p.m.36 views

What NIST’s latest password standards mean, and why the old ones weren’t working

Say goodbye to the days of using the "@" symbol to mean "a" in your password or replacing an "S" with a "$." The U.S. National Institute of Standards and Technology NIST recently announced new guidelines for the ways website and organizations should handle password creation and management that wi...

8.1CVSS9.9AI score0.60954EPSS
Exploits0
The Hacker News
The Hacker News
added 2024/10/09 6:53 a.m.60 views

Microsoft Issues Security Update Fixing 118 Flaws, Two Actively Exploited in the Wild

Microsoft has released security updates to fix a total of 118 vulnerabilities across its software portfolio, two of which have come under active exploitation in the wild. Of the 118 flaws, three are rated Critical, 113 are rated Important, and two are rated Moderate in severity. The Patch Tuesday...

9.8CVSS8.6AI score0.84345EPSS
Exploits5
Talos Blog
Talos Blog
added 2024/10/08 7:4 p.m.44 views

Largest Patch Tuesday since July includes two exploited in the wild, three critical vulnerabilities

The largest Microsoft Patch Tuesday since July includes two vulnerabilities that have been exploited in the wild and three other critical issues across the company's range of hardware and software offerings. October's monthly security update from Microsoft includes fixes for 117 CVEs, the most in...

9.8CVSS10AI score0.60954EPSS
Exploits4
OSV
OSV
added 2024/10/08 6:15 p.m.3 views

CVE-2024-43572

Microsoft Management Console Remote Code Execution Vulnerability...

7.8CVSS5.9AI score0.60954EPSS
Exploits0References2
Circl
Circl
added 2024/10/08 5:54 p.m.16 views

CVE-2024-43572

creationtimestamp| type| source ---|---|--- 2024-10-08 17:54:47+00:00| seen| https://www.thezdi.com/blog/2024/10/8/the-october-2024-security-update-review 2024-10-08 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2024-10-09 04:00:00+00:00| seen|...

7.8CVSS7.1AI score0.60954EPSS
Exploits0References11
Cvelist
Cvelist
added 2024/10/08 5:36 p.m.49 views

CVE-2024-43572 Microsoft Management Console Remote Code Execution Vulnerability

...

7.8CVSS0.60954EPSS
Exploits0References1
CVE
CVE
added 2024/10/08 5:36 p.m.674 views

CVE-2024-43572

CVE-2024-43572 is a Microsoft Windows Management Console Remote Code Execution vulnerability. Connected sources confirm a patch was released in the October 2024 updates, and Microsoft/Elastic Security Labs notes mitigations such as blocking untrusted MSC files to prevent code execution via MMC. T...

7.8CVSS8.6AI score0.60954EPSS
In wildExploits0References2Affected Software15
Vulnrichment
Vulnrichment
added 2024/10/08 5:36 p.m.46 views

CVE-2024-43572 Microsoft Management Console Remote Code Execution Vulnerability

...

7.8CVSS7.2AI score0.60954EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/10/08 12:0 a.m.39 views

CVE-2024-43572

Microsoft Management Console Remote Code Execution Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

7.8CVSS7.5AI score0.60954EPSS
In wildExploits0References2
Rows per page
Query Builder