Known Exploited Vulnerabilities and counting....
A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.
Common Vulnerability and Exposure
CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.
Search Known Exploits
Search for CVEs by vendor to identify known exploited vulnerabilities in your environment
CVE = Common Vulnerability and Exposure
CVE OF THE WEEK:
Palo Alto Networks
PAN-OS
Patch deadline: a year ago on 01/20/2025
CVE-2024-3393
Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malformed DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Repeated attempts to trigger this condition will cause the firewall to enter maintenance mode.
Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability
Learn more about this CVE: paloaltonetworks.com
Cyber Security News
You may have missed...
*
Inside a cyberattack: How hackers steal data
The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...
Bitcoin drops to 2024 low as AI fears and geopolitics rattle markets
US security process delays Nvidia chip sales · Geneva Engage Awards spotlight digital trust in the AI era · MIT develops AI model to speed up ...
Is The $9B $BTC Whale Sale Driven by Quantum Fear? BMIC Offers The Shield
Bitcoin and Ethereum currently rely on Elliptic Curve Cryptography ... Most crypto security solutions obsess over phishing or smart contract ...
CBO: Rural hospital cybersecurity workforce bill would cost $8M
cbo rural hospital cybersecurity — CBO estimates the Rural Hospital Cybersecurity Enhancement Act will cost $8 million over five years to improve…
Microsoft brings back Hayete Gallot to run security, new role for Bell - CNBC
Under Charlie Bell, Microsoft's cybersecurity business grew, but the company also dealt with the fallout from cyberattacks.
Wood Co. Sheriff Facebook page hacked, posting Epstein content - WTVG
The Sheriff's X (formerly Twitter) profile said Wednesday morning that its Facebook page was hacked and that it was trying to resolve the issue.
Hackers publish personal information stolen during Harvard, UPenn data breaches
The prolific cybercrime group ShinyHunters took responsibility for hacking Harvard and the University of Pennsylvania, and published the stolen ...
Cybercrime group claims responsibility for Penn email hack, leaks additional internal files.
The alledged hacker later told The Verge that the group planned to sell the data before releasing it to the public. Senior reporter Anvi Sehgal leads ...
Coinbase Discloses Insider Breach After Hackers Post Account Screenshots | PCMag
Hacking gang Scattered LAPSUS$ Hunters posted (and then deleted) screenshots suggesting it had inside access to Coinbase through its customer ...
Updated daily