Yasna | Cybersecurity news, filtered

The Hacker News 1 month, 2 weeks ago

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

Threat actors are exploiting security flaws in TBK DVR and end‑of‑life (EoL) TP-Link Wi-Fi routers to deploy Mirai-botnet variants on compromised devices, according to findings from Fortinet FortiGuard Labs and Palo Alto Networks Unit 42

More from The Hacker News 18 Apr 2026, 6:01 p.m. Incident · 5 stories CVE-2024-3721 Botnet CVE Compromise DoS Exploit Flaw Fortinet Palo Alto Networks Routers Threat Actor Vulnerability Wireless

The Hacker News 8 months, 4 weeks ago

CISA Flags TP-Link Router Flaws CVE-2023-50224 and CVE-2025-9377 as Actively Exploited

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws impacting TP-Link wireless routers to its Known Exploited Vulnerabilities (KEV) catalog, noting that there is evidence of them being exploited in the wild

More from The Hacker News 4 Sep 2025, 10:03 p.m. Actively exploited CVE-2023-50224 CVE-2025-9377 America Authentication Bypass CISA CVE Flaw Routers Spoofing Vulnerability Wireless

The Hacker News 11 months, 2 weeks ago

TP-Link Router Flaw CVE-2023-33538 Under Active Exploit, CISA Issues Immediate Alert

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security flaw in TP-Link wireless routers to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability in question is CVE-2023-33538 (CVSS score: 8.8), a command injection bug that could result in the execution of arbitrary system commands when

More from The Hacker News 17 Jun 2025, 8:12 p.m. Actively exploited CVE-2023-33538 America CISA CVE Exploit Flaw Routers Vulnerability Wireless

The Hacker News 1 year ago

Cisco Patches CVE-2025-20188 (10.0 CVSS) in IOS XE That Enables Root Exploits via JWT

Cisco has released software fixes to address a maximum-severity security flaw in its IOS XE Wireless Controller that could enable an unauthenticated, remote attacker to upload arbitrary files to a susceptible system

More from The Hacker News 8 May 2025, 4:57 p.m. CVE-2025-20188 Apple CVE Cisco Exploit Flaw Patch Root Unauthenticated Vulnerability Wireless

Dark Reading 1 year, 5 months ago

Fortinet Addresses Unpatched Critical RCE Vector

Fortinet has patched CVE-2023-34990 in its Wireless LAN Manager (FortiWLM), which combined with CVE-2023-48782 could allow for unauthenticated remote code execution (RCE) and the ability to read all log files.

More from Dark Reading 20 Dec 2024, 11:29 a.m. CVE-2023-34990 CVE-2023-48782 CVE Critical Fortinet Patch Remote Code Execution Unauthenticated Wireless

Dark Reading 1 year, 8 months ago

Zero-Click MediaTek Bug Opens Phones, Wi-Fi to Takeover

Critical-rated CVE-2024-20017 allows remote code execution (RCE) on a range of phones and Wi-Fi access points from a variety of OEMs.

More from Dark Reading 21 Sep 2024, 6:08 a.m. CVE-2024-20017 CVE Critical Remote Code Execution Wireless Zero-Click

The Register 1 year, 11 months ago

Let's kick off our summer with a pwn-me-by-Wi-Fi bug in Microsoft Windows

Redmond splats dozens of bugs as does Adobe while Arm drivers and PHP under active attack Patch Tuesday Microsoft kicked off our summer season with a relatively light June Patch Tuesday, releasing updates for 49 CVE-tagged security flaws in its products – including one bug deemed critical, a fairly terrifying one in wireless networking, and one listed as publicly disclosed.…

More from The Register 12 Jun 2024, 12:29 p.m. Adobe CVE Critical Disclosure Flaw Microsoft PHP Patch Patch Tuesday Wireless

Info Security Magazine 3 years ago

New Botnet Campaign Exploits Ruckus Wireless Flaw

Tracked CVE-2023-25717, the flaw was recently exploited by the AndoryuBot botnet, says Fortinet

More from Info Security Magazine 10 May 2023, 4:30 a.m. Actively exploited CVE-2023-25717 Botnet CVE Exploit Flaw Fortinet Wireless

Bleeping Computer 3 years, 1 month ago

TP-Link Archer WiFi router flaw exploited by Mirai malware

The Mirai malware botnet is actively exploiting a TP-Link Archer A21 (AX1800) WiFi router vulnerability tracked as CVE-2023-1389 to incorporate devices into DDoS (distributed denial of service) swarms. [...]

More from Bleeping Computer 25 Apr 2023, 11:45 p.m. Actively exploited CVE-2023-1389 Botnet CVE DoS Flaw Malware Routers Vulnerability Wireless

Bleeping Computer 4 years, 1 month ago

Cisco vulnerability lets hackers craft their own login credentials

Cisco has released a security advisory to warn about a critical vulnerability (CVSS v3 score: 10.0), tracked as CVE-2022-20695, impacting the Wireless LAN Controller (WLC) software. [...]

More from Bleeping Computer 16 Apr 2022, 5:54 a.m. CVE-2022-20695 CVE Cisco Credentials Critical Vulnerability Wireless

Latest cybersecurity reporting from selected sources.

Refine the feed

Volume over time

Fresh headlines available