ZDNet

Slack fixes vulnerability exploitable for session hijacking, account takeovers

A researcher fresh to the HackerOne bug bounty platform made their debut with a critical vulnerability in Slack that could be exploited for account takeovers. This form of attack tampers with the ...
Bleeping Computer

New 'CitrixBleed 2' NetScaler flaw let hackers hijack sessions

A recent vulnerability in Citrix NetScaler ADC and Gateway is dubbed "CitrixBleed 2," after its similarity to an older exploited flaw that allowed unauthenticated attackers to hijack authentication ...
Bleeping Computer

SonicWall firewall exploit lets hackers hijack VPN sessions, patch now

Security researchers at Bishop Fox have published complete exploitation details for the CVE-2024-53704 vulnerability that allows bypassing the authentication mechanism in certain versions of the ...