Tag: vulnerability
-
Over a Million Domains Vulnerable to Sitting Ducks DNS Attack
by
in SecurityNewsA new type of DNS attack puts millions of domains at risk of malware and hijacking, a recent report finds. A joint analysis by Infoblox and Eclypsium … First seen on sensorstechforum.com Jump to article: sensorstechforum.com/sitting-ducks-attack-vulnerable-domains/
-
CVE-2024-38193 Exploited by Lazarus Group in Targeted Attacks
by
in SecurityNewsA newly patched security vulnerability in Microsoft Windows has been actively exploited by the Lazarus Group, a notorious state-sponsored hacking grou… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2024-38193-lazarus-group/
-
Hackers Can Secretly Access ThinkPad Webcams by Disabling LED Indicator Light
by
in SecurityNewsIn a presentation at the POC 2024 conference, cybersecurity expert Andrey Konovalov revealed a novel method for covertly disabling the LED indicator of the ThinkPad X230’s webcam, highlighting ongoing vulnerabilities in USB-connected devices. Like many laptops, the ThinkPad X230 has a built-in webcam that connects via USB. During his presentation, Konovalov detailed his journey of…
-
Windows Server 2012: Inoffizieller 0patch-Fix für MoW 0-day-Schwachstelle
by
in SecurityNewsACROS Security hat einen Fix für eine bisher unbekannte 0-day-Schwachstelle in der Mark of the Web-Sicherheitsfunktion von Windows Server 2012 und Server 2012 R2 entwickelt. Der Fix steht Kunden über einen 0patch Micro-Patch zur Verfügung und ermöglicht die betreffenden Installationen … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/11/30/windows-server-2012-inoffizieller-0patch-fix-fuer-mow-0-day-schwachstelle/
-
New Windows Server 2012 zero-day gets free, unofficial patches
by
in SecurityNewsFree unofficial security patches have been released through the 0patch platform to address a zero-day vulnerability introduced over two years ago in the Windows Mark of the Web (MotW) security mechanism. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-windows-server-2012-zero-day-gets-free-unofficial-patches/
-
Warning: Patch Advantech Industrial Wireless Access Points
by
in SecurityNewsResearchers Discover 20 Critical Flaws Attackers Could Exploit in a Variety of Ways. Researchers identified 20 critical vulnerabilities in a type of Advantech industrial-grade wireless access point that’s widely deployed across critical infrastructure environments. Attackers could exploit the flaws to remotely executive code and create denials of service. First seen on govinfosecurity.com Jump to article:…
-
DoS und Spoofing möglich – Kritische Schwachstellen in PHP gefährden Webseiten
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/sicherheitsupdates-php-entwickler-cve-2024-1874-a-8c4147f7ee335ada0705513bdb99a408/
-
Critical ICS Vulnerabilities Discovered in Schneider Electric, mySCADA, and Automated Logic Products
by
in SecurityNewsA recent Cyble ICS vulnerabilities report sheds light on several critical vulnerabilities in industrial control systems (ICS) from major vendors including Schneider Electric, mySCADA, and Automated Logic. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/ics-vulnerabilities-reported-this-week/
-
600,000+ Sensitive Records Exposed From Background Checks Service Provider
by
in SecurityNewsA publicly exposed database has left the sensitive information of hundreds of thousands of individuals vulnerable to potential misuse. Not protected by passwords or encryption, the database contained 644,869 PDF files, totaling 713.1 GB, exposing a treasure trove of personal information. The data, mostly labeled as >>background checks,
-
Popular game script spoofed to infect thousands of game developers
by
in SecurityNewsA malware loader, now named GodLoader, has been observed to be using Godot, a free and open-source game engine, as its runtime to execute malicious codes and has dropped known malware on at least 17,000 machines.Unaware users of the engine, which helps create 2D and 3D games and deploy them across various platforms including Windows,…
-
Microsoft Fixes AI, Cloud, and ERP Security Flaws; One Exploited in Active Attacks
by
in SecurityNewsMicrosoft has addressed four security flaws impacting its artificial intelligence (AI), cloud, enterprise resource planning, and Partner Center offerings, including one that it said has been exploited in the wild.The vulnerability that has been tagged with an “Exploitation Detected” assessment is CVE-2024-49035 (CVSS score: 8.7), a privilege escalation flaw in partner.microsoft[.]com.”An First seen on thehackernews.com…
-
Zyxel Firewalls Targeted by Helldown Ransomware: CVE-2024-11667 Exploited
by
in SecurityNewsZyxel Firewalls have become a key target in recent cyberattacks, with attackers exploiting a critical vulnerability to deploy the dangerous Helldown ransomware. The German CERT (CERT-Bund) has issued a warning alongside Zyxel detailing the extent of these attacks and outlining immediate steps that organizations must take to protect their network devices. First seen on thecyberexpress.com…
-
Acronis: Diese Cyber-Bedrohungen werden sich in 2025 verschärfen
by
in SecurityNewsBei der Untersuchung der diesjährigen Entwicklungen wird deutlich, dass Cyberkriminelle ihre Angriffsvektoren immer weiter verfeinern, was auf eine Kombination aus technologischen Fortschritten und einem tieferen Verständnis der Schwachstellen von Unternehmen zurückzuführen ist. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/acronis-diese-cyber-bedrohungen-werden-sich-in-2025-verschaerfen/a39093/
-
Sicherheitsrisiken in Cloud-Umgebungen – Schwachstellen-Kombination macht Angriffe wahrscheinlicher
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/cloud-risk-report-2024-risiken-cloud-umgebungen-a-31b29d1ebdec694b8ecf4775de1dc86c/
-
Zyxel Firewall Vulnerability Actively Exploited in Attacks
by
in SecurityNewsZyxel has announced awareness of active exploitation attempts by threat actors targeting their firewall products. This follows a detailed report by cybersecurity firm Sekoia highlighting vulnerabilities previously disclosed in Zyxel’s systems. The company has responded swiftly to these potential threats, aiming to safeguard its users through vital firmware updates and security enhancements. CVE-2024-11667: The Vulnerability…
-
Helldown Zyxel-Firewalls mit möglicher Zero-Day-Schwachstelle
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/neue-ransomware-helldown-analyse-zyxel-firewalls-a-700f77fe9bb21c4be52f7a6e26981a7e/
-
The effect of compliance requirements on vulnerability management strategies
by
in SecurityNewsIn this Help Net Security interview, Steve Carter, CEO of Nucleus Security, discusses the ongoing challenges in vulnerability management, including prioritizing … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/29/steve-carter-nucleus-security-vulnerability-management-challenges/
-
Microsoft Patches Multiple Vulnerabilities Allow Attackers to Elevate Privileges
by
in SecurityNewsMicrosoft has recently released patches addressing multiple vulnerabilities that could enable attackers to elevate privileges across various Microsoft products. The patches are part of Microsoft’s continuous efforts to enhance security and protect its users from threats. The Microsoft Security Response Center (MSRC) has been actively investigating these vulnerabilities to provide timely and effective security updates.…
-
VPN vulnerabilities, weak credentials fuel ransomware attacks
by
in SecurityNewsAttackers leveraging virtual private network (VPN) vulnerabilities and weak passwords for initial access contributed to nearly 30% of ransomware attacks, according to Corvus … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/28/vpn-weak-credentials-ransomware-attacks/
-
35 Million Devices Vulnerable: Matrix DDoS Campaign Highlights Growing IoT Threat
by
in SecurityNewsAqua Nautilus researchers have uncovered a major Distributed Denial-of-Service (DDoS) campaign led by a threat actor operating under the name Matrix. This operation, detected through honeypot activities, showcases a concerning... First seen on securityonline.info Jump to article: securityonline.info/35-million-devices-vulnerable-matrix-ddos-campaign-highlights-growing-iot-threat/
-
Critical Array Networks flaw added to CISA vulnerabilities catalog
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/critical-array-networks-flaw-added-to-cisa-vulnerabilities-catalog
-
Script Kiddie ‘Matrix’ Builds Massive Botnet
by
in SecurityNewsLikely Russian Hacker Exploits IoT Vulnerabilities, Many Known for Years. An apparent Russian script kiddie is converting widespread security gaps into powerful botnets capable of launching global-scale distributed denial-of-service attacks. A threat actor with the online moniker Matrix is exploiting IoT vulnerabilities such as default credentials and outdated software. First seen on govinfosecurity.com Jump to…
-
Russian APT RomCom combines Firefox and Windows zero-day flaws in drive-by exploit
by
in SecurityNews
Tags: access, antivirus, apt, attack, backdoor, browser, business, computer, cve, cybercrime, cyberespionage, defense, endpoint, exploit, flaw, germany, government, group, insurance, intelligence, malicious, microsoft, msp, password, powershell, russia, software, threat, ukraine, vulnerability, windows, zero-dayA Russia-aligned group that engages in both cybercrime and cyberespionage operations used a zero-click exploit chain last month that combined previously unknown and unpatched vulnerabilities in Firefox and Windows.The campaign, whose goal was to deploy the group’s RomCom backdoor on computers, targeted users from Europe and North America. The APT group, also known as Storm-0978,…
-
Critical Flaw in ProjectSend Under Active Exploitation Against Public-Facing Servers
by
in SecurityNewsA critical security flaw impacting the ProjectSend open-source file-sharing application has likely come under active exploitation in the wild, according to findings from VulnCheck.The vulnerability, originally patched over a year-and-a-half ago as part of a commit pushed in May 2023 , was not officially made available until August 2024 with the release of version r1720.…
-
AmberWolf Launches NachoVPN Tool to Tackle VPN Security Risks
by
in SecurityNewsResearchers reveal major vulnerabilities in popular corporate VPN clients, allowing remote attacks. Discover the NachoVPN tool and expert… First seen on hackread.com Jump to article: hackread.com/amberwolf-nachovpn-tool-vpn-security-risks/
-
VMware fixed five vulnerabilities in Aria Operations product
by
in SecurityNewsVirtualization giant VMware addressed multiple vulnerabilities in its Aria Operations product that can led to privilege escalation and XSS attacks. VMware released security updates to address five vulnerabilities in its Aria Operations product. Aria Operations (formerly known as VMware vRealize Operations) is a comprehensive cloud management and operations platform developed by VMware. It is designed…
-
Exploits gesichtet – Schwachstellen in VMware vCenter ermöglichen Malware-Angriffe
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/patches-exploit-vmware-vcenter-schwachstellen-a-139e6c7835ef3f388a645cbe38014bce/
-
Neue BSI-Warnung – Kritische Schwachstellen in Palo Altos Firewalls und PAN-OS
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/bsi-warnt-vor-sicherheitsluecken-in-palo-alto-networks-firewalls-a-b9781c3b9b0e301d5f75ae896154fae9/
-
ProjectSend Authentication Vulnerability Exploited in the Wild
by
in SecurityNewsProjectSend, an open-source file-sharing web application, has become a target of active exploitation following the recent assignment of CVE-2024-11680 on November 25, 2024. Despite the availability of a patch for more than a year, adoption rates remain alarmingly low, leaving many instances vulnerable to attack. ProjectSend Authentication Vulnerability ProjectSend is moderately popular, with nearly 1,500…
-
Breaking Boundaries: Investigating Vulnerable Drivers and Mitigating Risks
by
in SecurityNewsesearch by:Jiri Vinopal Have you ever wondered why there are so many vulnerable drivers and what might be causing them to be vulnerable? Do you want t… First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2024/breaking-boundaries-investigating-vulnerable-drivers-and-mitigating-risks/