Tag: flaw
-
Critical Flaw in ProjectSend Under Active Exploitation Against Public-Facing Servers
by
in SecurityNewsA critical security flaw impacting the ProjectSend open-source file-sharing application has likely come under active exploitation in the wild, according to findings from VulnCheck.The vulnerability, originally patched over a year-and-a-half ago as part of a commit pushed in May 2023 , was not officially made available until August 2024 with the release of version r1720.…
-
Hackers Exploit Firefox and Windows Flaws: RomCom’s Advanced Attack Unveiled
by
in SecurityNewsA Russia-aligned hacking group, known as RomCom (also identified as Storm-0978, Tropical Scorpius, or UNC2596), has successfully exploited two zero-day vulnerabilities”, one in Mozilla Firefox and another in Microsoft Windows Task Scheduler. These vulnerabilities, identified as CVE-2024-9680 and CVE-2024-49039, were chained together to allow the group to execute arbitrary code and install malicious backdoors on…
-
Russian RomCom APT Group Leverages Zero-Day Flaws in Firefox and Windows
by
in SecurityNewsRussia-backed hackers, known as RomCom, have exploited critical zero-day vulnerabilities in Mozilla Firefox and Windows to launch targeted attacks First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/romcom-apt-zeroday-flaws-firefox/
-
NVIDIA UFM Vulnerability Leads to Privilege Escalation Data Tampering
by
in SecurityNewsNVIDIA has released a critical security update addressing a significant vulnerability in its Unified Fabric Manager (UFM) products. This flaw, identified as CVE-2024-0130, poses a high-severity risk to users, with a CVSS v3.1 base score of 8.8. The vulnerability could allow attackers to escalate privileges, tamper with data, and even compromise system availability. Analyze cyber threats with…
-
Russian Hackers Target Mozilla, Windows in New Exploit Chain
by
in SecurityNewsESET Discovers Two Major Vulnerabilities Exploited by Russian RomCom Hacking Group. Two vulnerabilities in Mozilla products and Windows are actively exploited by RomCom, a Kremlin-linked cybercriminal group known for targeting businesses and conducting espionage, warn security researchers from Eset. Exploiting the two flaws together enables attackers to execute arbitrary code. First seen on govinfosecurity.com Jump…
-
Remote takeover likely with mySCADA myPRO flaws
by
in SecurityNews
Tags: flawFirst seen on scworld.com Jump to article: www.scworld.com/brief/remote-takeover-likely-with-myscada-mypro-flaws
-
Cloud breaches possible with new attack leveraging IaC, PaC tool flaws
First seen on scworld.com Jump to article: www.scworld.com/brief/cloud-breaches-possible-with-new-attack-leveraging-iac-pac-tool-flaws
-
QNAP Systems Fixes Bugs in QuRouter and Notes Station 3
Exploits Could Allow Remote Command Execution and Access. The Taiwanese NAS maker QNAP Systems on Saturday patched multiple flaws in its operating system and applications that could allow attackers to compromise network storage devices. The patch also included multiple flaws in QNAP’s router operating system QuRouter OS. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/qnap-systems-fixes-bugs-in-qurouter-notes-station-3-a-26908
-
Researchers reveal exploitable flaws in corporate VPN clients
by
in SecurityNewsResearchers have discovered vulnerabilities in the update process of Palo Alto Networks (CVE-2024-5921) and SonicWall (CVE-2024-29014) corporate VPN clients that could be … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/26/vulnerabilities-corporate-vpn-clients-cve-2024-5921-cve-2024-29014/
-
Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks
by
in SecurityNewsTwo critical security flaws impacting the Spam protection, Anti-Spam, and FireWall plugin WordPress could allow an unauthenticated attacker to install and enable malicious plugins on susceptible sites and potentially achieve remote code execution.The vulnerabilities, tracked as CVE-2024-10542 and CVE-2024-10781, carry a CVSS score of 9.8 out of a maximum of 10.0. They were addressed in…
-
CISA Adds Array Networks’ CVE-2023-28461 to KEV List: Critical Patching Urged
by
in SecurityNewsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently added a critical security flaw, CVE-2023-28461, to its Known Exploited Vulnerabilities (KEV) catalog. This vulnerability impacts First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cisa-adds-cve-2023-28461-vulnerability/
-
200,000 WordPress Sites Exposed to Cyber Attack, Following Plugin Vulnerability
by
in SecurityNewsA critical security vulnerability has been discovered in the popular WordPress plugin Anti-Spam by CleanTalk, which is installed on over 200,000 websites. The vulnerability, which includes two distinct flaws (CVE-2024-10542 and CVE-2024-10781), could allow attackers to install and activate arbitrary plugins on affected websites, potentially leading to remote code execution and full site compromise. Website owners…
-
RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks
by
in SecurityNewsThe Russia-aligned threat actor known as RomCom has been linked to the zero-day exploitation of two security flaws, one in Mozilla Firefox and the other in Microsoft Windows, as part of attacks designed to deliver the eponymous backdoor on victim systems.”In a successful attack, if a victim browses a web page containing the exploit, an…
-
RomCom hackers chained Firefox and Windows zero-days to deliver backdoor
by
in SecurityNewsRussia-aligned APT group RomCom was behind attacks that leveraged CVE-2024-9680, a remote code execution flaw in Firefox, and CVE-2024-49039, an elevation of privilege … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/26/romcom-backdoor-cve-2024-9680-cve-2024-49039/
-
CISA Urges Agencies to Patch Critical “Array Networks” Flaw Amid Active Attacks
by
in SecurityNews
Tags: access, attack, authentication, cisa, cve, cybersecurity, exploit, flaw, infrastructure, kev, network, update, vulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a now-patched critical security flaw impacting Array Networks AG and vxAG secure access gateways to its Known Exploited Vulnerabilities (KEV) catalog following reports of active exploitation in the wild.The vulnerability, tracked as CVE-2023-28461 (CVSS score: 9.8), concerns a case of missing authentication that First…
-
Zyxel firewalls targeted in recent ransomware attacks
by
in SecurityNewsZyxel warns that a ransomware group has been observed exploiting a recently patched command injection issue in its firewalls. Zyxel warns that a ransomware gang has been observed exploiting a recently patched command injection vulnerability, tracked as CVE-2024-42057, in its firewalls for initial compromise. Remote, unauthenticated attackers could exploit the flaw to execute OS commands…
-
QNAP addresses critical flaws across NAS, router software
by
in SecurityNewsQNAP has released security bulletins over the weekend, which address multiple vulnerabilities, including three critical severity flaws that users should address as soon as possible. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/qnap-addresses-critical-flaws-across-nas-router-software/
-
More than 400K devices vulnerable to most exploited flaws
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/more-than-400k-devices-vulnerable-to-most-exploited-flaws
-
November 2024 Patch Tuesday Fixes Actively Exploited Flaws (CVE-2024-49039)
by
in SecurityNewsIn its November 2024 Patch Tuesday update, Microsoft addressed 90 security vulnerabilities, including two critical zero-day exploits currently being actively exploited in the wild (CVE-2024-49039 and CVE-2024-49039). This also update includes fixes for issues impacting Windows NT LAN Manager (NTLM)… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/november-2024-patch-tuesday-cve-2024-49039/
-
7-Zip RCE Vulnerability Let Attackers Execute Remote Code
by
in SecurityNewsA critical security vulnerability has been disclosed in the popular file archiving tool 7-Zip, allowing attackers to execute arbitrary code remotely. The flaw, identified as CVE-2024-11477, has been attributed to an integer underflow in the Zstandard decompression implementation, which could lead to remote code execution (RCE). CVE-2024-11477 Vulnerability Details The vulnerability, CVE-2024-11477 discovered by […]…
-
Flaw in Right-Wing ‘Election Integrity’ App Exposes Voter-Suppression Plan and User Data
by
in SecurityNewsA bug that WIRED discovered in True the Vote’s VoteAlert app revealed user information, and an election worker who wrote about carrying out an illegal… First seen on wired.com Jump to article: www.wired.com/story/true-the-vote-votealert-app-flaw-user-emails-voter-suppression-plan/
-
Fortinet discloses critical zero-day flaw in FortiManager
by
in SecurityNewsAccording to Fortinet, the FortiManager vulnerability ‘may allow a remote unauthenticated attacker to execute arbitrary code or commands via specially… First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366614476/Fortinet-discloses-critical-zero-day-flaw-in-FortiManager
-
‘Alarming’ security bugs lay low in Linux’s needrestart utility for 10 years
by
in SecurityNewsUpdate now: Qualys says flaws give root to local users, ‘easily exploitable’, default in Ubuntu Server First seen on theregister.com Jump to article: www.theregister.com/2024/11/21/qualys_needrestart_linux_vulnerabilities/
-
Zero Days Top Cybersecurity Agencies’ Most-Exploited List
by
in SecurityNewsCybersecurity Officials Urge to Prioritize Fixing These 15 Most-Exploited Flaws. Which vulnerabilities need fixing first to best block nation-state and other hacking attempts? Enter the latest Five Eyes intelligence partnership list of the 15 flaws most targeted by attackers, of which 11 were zero-days. Many organizations have yet to patch them all. First seen on…
-
In Other News: Nvidia Fixes Critical Flaw, Chinese Linux Backdoor, New Details in WhatsApp-NSO Lawsuit
by
in SecurityNewsNoteworthy stories that might have slipped under the radar: Nvidia fixes vulnerability with rare ‘critical’ severity, Chinese APT’s first Linux backdoor, new details emerge from the WhatsApp-NSO lawsuit. The post In Other News: Nvidia Fixes Critical Flaw, Chinese Linux Backdoor, New Details in WhatsApp-NSO Lawsuit appeared first on SecurityWeek. First seen on securityweek.com Jump to…
-
400,000 Systems Potentially Exposed to 2023’s Most Exploited Flaws
by
in SecurityNewsVulnCheck finds hundreds of thousands of internet-accessible hosts potentially vulnerable to 2023’s top frequently exploited flaws. The post 400,000 Systems Potentially Exposed to 2023’s Most Exploited Flaws appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/400000-systems-potentially-exposed-to-2023s-most-exploited-flaws/
-
MITRE Unveils Top 25 Most Critical Software Flaws
by
in SecurityNewsThe 25 most dangerous software weaknesses between June 2023 and June 2024 are responsible for almost 32,000 vulnerabilities First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/mitre-unveils-top-25-software-flaws/
-
AI and Open Source Security: The Critical Role of AI-Powered Fuzzing in Finding Flaws
by
in SecurityNewsGoogle initiative First seen on thecyberexpress.com Jump to article: thecyberexpress.com/ai-in-fuzzing-uncovers-vulnerabilities/