CISA Flags Array Networks Flaw (CVE-2023-28461) Amid 2,000 Attacks; Russian Hackers Exploit Firefox (CVE-2024-9680), Windows (CVE-2024-49039) Zero-Days

Recent cybersecurity reports highlight significant vulnerabilities and attacks targeting various platforms and software. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical security flaw, CVE-2023-28461, affecting Array Networks AG and vxAG gateways, to its Known Exploited Vulnerabilities catalog due to active exploitation. This follows reports of more than 2,000 attacks on Palo Alto Networks PAN-OS firewalls since security flaws were patched earlier this month. Additionally, Russian hackers have been linked to the exploitation of zero-day vulnerabilities in Firefox (CVE-2024-9680) and Windows (CVE-2024-49039), allowing them to deliver the RomCom backdoor malware without user interaction. Concurrently, a previously unknown China-linked hacking group named Earth Estries has been identified using custom malware to target telecommunications and technology sectors across Southeast Asia. Furthermore, a new threat named Matrix has emerged, utilizing IoT devices in a widespread DDoS attack campaign. These incidents underscore the ongoing challenges in cybersecurity as attackers leverage both old and new vulnerabilities across various platforms.