0day And Hitlist Week 06122024 Link

  • Ransomware Targeting Healthcare Sectors:
    A surge in attacks on hospital IoT devices, exploiting unpatched legacy systems. One variant, RansomIoT-V, disrupted medical equipment while holding electronic health records for ransom.

    • | Source | Purpose | |--------|---------| | CISA Known Exploited Vulnerabilities | Official US gov hitlist of exploited bugs | | Google Project Zero | 0day disclosures & timelines | | Exploit-DB | Proof-of-concepts for patched vulnerabilities | | NVD (NIST) | CVE details, CVSS scores | | CVE.org | Official CVE list | | VulDB | Commercial vulnerability DB with exploit maturity info | | GreyNoise Visualizer | See which exploits are actively scanning the internet | 0day and hitlist week 06122024 link

    0day (zero-day) refers to a software vulnerability that is unknown to the vendor or for which no public patch exists. The “0” indicates the number of days the vendor has had to fix it. Ransomware Targeting Healthcare Sectors: A surge in attacks

    If you are a security researcher or penetration tester, you would normally get such lists from: | Source | Purpose | |--------|---------| | CISA