This week marks a significant escalation in cybersecurity threats with Fortinet's critical flaw (CVE-2024-47575) being actively exploited, allowing unauthenticated remote code execution.
In a concerning revelation, researchers unearthed severe cryptographic flaws in five E2EE cloud storage providers, posing risks of data tampering and unauthorized access to plaintext.
The notorious Lazarus Group has successfully exploited a zero-day vulnerability in Google Chrome (CVE-2024-4947), taking control of devices through carefully crafted deceptions targeting users.
Mandiant is currently tracking active exploitation efforts linked to the Fortinet vulnerability under the codename UNC5820, although the perpetrators remain unidentified.
Collection
[
|
...
]