
Microsoft Fixes New Azure AD Vulnerability Impacting Bing Search and Major Apps
Microsoft has patched a misconfiguration issue impacting the Azure Lively Directory (AAD) identification and accessibility administration provider that uncovered various “large-impression” applications to unauthorized accessibility. “A single of these applications is a written content administration process…
Microsoft Fixes New Azure AD Vulnerability Impacting Bing Search and Major AppsRead More

Cacti, Realtek, and IBM Aspera Faspex Vulnerabilities Under Active Exploitation
Critical security flaws in Cacti, Realtek, and IBM Aspera Faspex are remaining exploited by different menace actors in hacks concentrating on unpatched methods. This involves the abuse of CVE-2022-46169 (CVSS rating: 9.8) and CVE-2021-35394 (CVSS score:…
Cacti, Realtek, and IBM Aspera Faspex Vulnerabilities Under Active ExploitationRead More

Hackers Exploiting WordPress Elementor Pro Vulnerability: Millions of Sites at Risk!
Unidentified menace actors are actively exploiting a not long ago patched security vulnerability in the Elementor Pro website builder plugin for WordPress. The flaw, described as a case of broken obtain command, impacts variations 3.11.6 and…
Hackers Exploiting WordPress Elementor Pro Vulnerability: Millions of Sites at Risk!Read More

New Azure Flaw “Super FabriXss” Enables Remote Code Execution Attacks
A new vulnerability has been discovered in Microsoft’s Azure Support Material Explorer (SFX) that would enable unauthenticated, distant risk actors to execute code on a container hosted on a Support Fabric node. Dubbed Super FabriXss by…
New Azure Flaw “Super FabriXss” Enables Remote Code Execution AttacksRead More

Italy’s Privacy Watchdog Blocks ChatGPT Amid Privacy Concerns
The Italian Facts Safety Authority (Garante for every la protezione dei dati personali) has quickly suspended the use of the artificial intelligence (AI) company ChatGPT in the state. The privacy watchdog opened a probe into OpenAI’s…
Italy’s Privacy Watchdog Blocks ChatGPT Amid Privacy ConcernsRead More

Modular “AlienFox” Toolkit Used to Steal Cloud Service Credentials
A new malware toolset has been found and analyzed by security gurus at SentinelOne. Dubbed “AlienFox” by the staff, the toolkit can harvest qualifications for a number of cloud provider providers. An advisory printed on Thursday…
Modular “AlienFox” Toolkit Used to Steal Cloud Service CredentialsRead More