Skip to main content

Search

Items tagged with: zeroday

Mozilla Firefox exploited zero-day: Security Advisory 2024-51 Security Vulnerability fixed in Firefox 131.0.2, Firefox ESR 128.3.1, Firefox ESR 115.16.1
CVE-2024-9680 (9.8 critical) Use-after-free in Animation timeline

An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines. We have had reports of this vulnerability being exploited in the wild.


See related @BleepingComputer reporting: Mozilla fixes Firefox zero-day actively exploited in attacks

The Canadian Centre for Cyber Security (CCCS) has a useless Mozilla security advisory (AV24-576) which doesn't indicate that this is an actively exploited zero-day. What's the point in an advisory when it doesn't provide the biz?

#zeroday #vulnerability #firefox #mozilla #cve #CVE_2024_9680

#firefox #mozilla #vulnerability #cve #zeroday #cve_2024_9680 @BleepingComputer

Tu je niekoľko populárnych hashtagov týkajúcich sa rôznych tém v oblasti kybernetickej bezpečnosti:

  1. #CyberSecurity - General cybersecurity topics
  2. #InfoSec - Information security
  3. #PenTesting - Penetration testing
  4. #OSINT - Open-source intelligence
  5. #ThreatHunting - Identifying and responding to threats
  6. #MalwareAnalysis - Analyzing and understanding malware
  7. #IncidentResponse - Responding to cyber incidents
  8. #ZeroDay - Zero-day vulnerabilities and exploits
  9. #CyberThreats - Cyber threat intelligence
  10. #EthicalHacking - Hacking for ethical purposes
  11. #RedTeam - Offensive security testing
  12. #BlueTeam - Defensive security operations
  13. #CloudSecurity - Securing cloud environments
  14. #IoTSecurity - Security for Internet of Things devices
  15. #DataProtection - Protecting sensitive data
  16. #SOC - Security Operations Center practices
  17. #Phishing - Phishing attacks and prevention
  18. #Ransomware - Ransomware threats and defenses
  19. #CryptoSecurity - Cryptography and encryption
  20. #AppSec - Application security
  21. #BugBounty - Programs for finding and reporting security bugs
  22. #DigitalForensics - Investigating cyber crimes
  23. #Privacy - Protecting personal and organizational privacy
  24. #CISO - Chief Information Security Officer topics
  25. #GDPR - General Data Protection Regulation compliance

Môžete ich používať na platformách sociálnych médií, aby ste objavili obsah, zapojili sa do diskusií a zostali informovaní o najnovších poznatkoch v oblasti kybernetickej bezpečnosti.

#privacy #infosec #gdpr #cybersecurity #DataProtection #OSINT #soc #Phishing #appsec #zeroday #blueteam #pentesting #bugbounty #threathunting #malwareanalysis #incidentresponse #cyberthreats #ethicalhacking #redteam #cloudsecurity #iotsecurity #ransomware #cryptosecurity #digitalforensics #ciso

#ISW, May 8 assessment: "Reports indicate that there is an available open-source tool that allows people to search by specific coordinates for Telegram users who have enabled a certain location-sharing setting."

But of course there is. The russian-engineering, roll-your-own-crypto, cryptocoin-shilling, encrypted-but-not-encrypted messaging app to have a zero-day exploited privacy flaw exposing users' location? I can't imagine where such failures would come from.

#telegram #zeroday #privacy

Russian opposition outlet Meduza reported on May 8 that this tool allows people to input coordinates to discover all Telegram users who have enabled the "find people nearby" setting located within 50–100 meters of the coordinates.[31] Meduza noted that the "find people nearby" setting usually only allows users to find other Telegram users within 50–100 meters of their current location. Users can enable or disable this location-sharing setting in the "contacts" settings of the application.
#privacy #telegram #ISW #zeroday