Kubernetes vulnerability allows RCE on Windows endpoints (CVE-2023-3676) Kubernetes vulnerability allows RCE on Windows endpoints (CVE-2023-3676) – Help Net Security
Thousands of Juniper devices vulnerable to unauthenticated RCE flaw Thousands of Juniper devices vulnerable to unauthenticated RCE flaw (bleepingcomputer.com)
Mozilla patches Firefox, Thunderbird against zero-day exploited in attacks Mozilla patches Firefox, Thunderbird against zero-day exploited in attacks (bleepingcomputer.com)
Notepad++ 8.5.7 released with fixes for four security vulnerabilities Notepad++ 8.5.7 released with fixes for four security vulnerabilities (bleepingcomputer.com)
Apple zero-click iMessage exploit used to infect iPhones with spyware Apple zero-click iMessage exploit used to infect iPhones with spyware (bleepingcomputer.com)
Chrome extensions can steal plaintext passwords from websites Chrome extensions can steal plaintext passwords from websites (bleepingcomputer.com)
Downfall: New Intel CPU Attack Exposing Sensitive Information Downfall: New Intel CPU Attack Exposing Sensitive Information – SecurityWeek
Hackers increasingly abuse Cloudflare Tunnels for stealthy connections Hackers increasingly abuse Cloudflare Tunnels for stealthy connections (bleepingcomputer.com)
Threat Actors Abuse Cloudflare Tunnel for Persistent Access, Data Theft Threat Actors Abuse Cloudflare Tunnel for Persistent Access, Data Theft – SecurityWeek
New Microsoft Azure AD CTS feature can be abused for lateral movement New Microsoft Azure AD CTS feature can be abused for lateral movement (bleepingcomputer.com)
