News Snapshot:
Tens of thousands of Jenkins servers are vulnerable to a high-severity bug that allows threat actors to run malicious code on the endpoints, remotely. The project recently released two patches addressing the vulnerability, and are urging users to apply them immediately and avoid unnecessary risk. Jenkins is an open source automation server for CI/CD, with which developers can build, test, and deploy various processes. No evidence of abuse (yet) Last week, the project released versions 2.442, and LTS 2.426.3, which address an arbitrary file read vulnerability tracked as CVE-2024-23897. This vulnerability, BleepingComputer reports, already has multiple proof-of-concept (PoC) exploits in...
News Timeline:
Track the development of related news across the Internet.
January 24, 2024
08:36
Mass exploitation of Ivanti VPNs is infecting networks around the globe
Source: arstechnica.com
November 23, 2023
02:35
Thousands of routers and cameras vulnerable to new 0-day attacks by hostile botnet
Source: arstechnica.com
October 30, 2023
13:55
Youth vaping skyrockets as 85% are exposed to e-cig ads, despite global bans
Source: news-medical.net
October 10, 2023
02:47
Researchers find backdoor in thousands of generic Android set-top boxes
Source: techspot.com
October 2, 2023
18:45
India’s national logistics portal exposed sensitive personal data, trade records
Source: techcrunch.com
August 10, 2023
04:58
How an unpatched Microsoft Exchange 0-day likely caused one of the UK’s biggest hacks ever
Source: arstechnica.com
June 1, 2023
23:58
Russia says U.S. accessed thousands of Apple phones in spy plot
Source: reuters.com
