discovered
-
IntroductionAs a Security Researcher, I focus on finding and responsibly reporting security vulnerabilities to enhance the safety of systems worldwide. Not long ago, I identified a critical SQL injection vulnerability in Synnefo’s Internet Management Software (IMS), a platform used by over 350+ Internet service providers (ISPs) across six countries. With millions of users relying on…
-
Northwave Cyber Security has identified a sophisticated backdoor, LITTLELAMB.WOOLTEA, targeting Palo Alto Networks firewalls. The backdoor was uncovered during a forensic investigation into a compromised Palo Alto Networks device. Attackers… The post CVE-2024-9474 Exploited: LITTLELAMB.WOOLTEA Backdoor Discovered in Palo Alto Devices appeared first on Cybersecurity News.
-
More than 190,000 Android devices have been observed connecting to newly uncovered BadBox botnet infrastructure, cybersecurity firm Bitsight reports. submitted by /u/ControlCAD [link] [comments]
-
The Federal Office for Information Security (BSI) in Germany has taken decisive action against a wave of malware-infected digital picture frames and media players connected to the Internet.
-
Experts discovered the first mobile malware families linked to Russia’s Gamaredon
-
EagleMsgSpy is a Chinese-made surveillance tool used by Chinese authorities since at least 2017. It’s still being actively developed. This spyware, installed via an APK file, operates secretly on targeted devices to gather sensitive information.
-
Experts discovered surveillance tool EagleMsgSpy used by Chinese law enforcement
-
Security researchers have disclosed multiple critical vulnerabilities affecting IBM Security Verify Access Appliance, a widely deployed solution for web application access management and authentication.
-
Jenkins, the widely-used open-source automation server, has issued a security advisory addressing multiple vulnerabilities impacting both its core system and associated plugins. These flaws, ranging from denial of service to cross-site scripting, pose significant risks to Jenkins users if left unpatched.
-
MalBot November 17, 2024, 7:45am 1 There are so many vulnerabilities in commonly used routers that attackers often leave many easily exploited vulnerabilities untouched, as they already have plenty of vulnerabilities to exploit.
-
Microsoft has recently disclosed a new security vulnerability, CVE-2024-49019, in Microsoft Patch Tuesday updates, affecting Active Directory Certificate Services (AD CS).
-
Security researchers have uncovered a critical remote code execution (RCE) vulnerability in DrayTek Vigor2960 routers, a popular choice for businesses requiring a robust VPN solution.
-
A new critical vulnerability has been discovered in CyberPanel, a popular open-source web hosting control panel, by security researcher DreyAnd. The flaw, a zero-click pre-authentication root remote code execution (RCE), remains unpatched in the latest version (2.3.6) of CyberPanel, leaving potentially thousands of instances exposed to a serious security threat.
-
A new vulnerability, CVE-2024-22036, has been disclosed by the SUSE Rancher Security team, highlighting a critical flaw that enables remote code execution (RCE) in Rancher environments. Rated 9.1 on the CVSS scale, this vulnerability presents a significant risk, allowing attackers to exploit cluster and node drivers to escape the chroot jail and gain root access…
-
Cisco fixed a denial of service flaw in its Cisco ASA and Firepower Threat Defense (FTD) software, which was discovered during large-scale brute force attacks against Cisco VPN devices in April. The flaw is tracked as CVE-2024-20481 and impacts all versions of Cisco ASA and Cisco FTD up until the latest versions of the software. “A vulnerability in…
-
When Apple dropped macOS Sequoia last month, it added new features like window snapping and the ability to control your iPhone from your Mac. In addition to surface-level changes, however, the new update also introduced a lengthy series of patches for security vulnerabilities. As it happens, one of these vulnerabilities was discovered by none other…
-
Vendure, a popular open-source headless commerce platform, has patched a critical security vulnerability that could allow attackers to read arbitrary files from the server, potentially exposing sensitive information like configuration files and environment variables. The vulnerability, tracked as CVE-2024-48914 and assigned a CVSS score of 9.1, stems from a path traversal issue in the AssetServerPlugin…
-
The malware resides in the userspace portion of the interbank switch connecting the issuing domain and the acquiring domain. When a compromised card is used to make a fraudulent translation, FASTCash tampers with the messages the switch receives from issuers before relaying it back to the merchant bank. As a result, issuer messages denying the…
-
Security researcher HaxRob has uncovered a new Linux variant of the notorious FASTCash malware, attributed to North Korean state-sponsored hacking groups. This malware targets financial institutions by manipulating payment systems to facilitate unauthorized ATM withdrawals. The Linux variant adds another operating system to the growing list of FASTCash targets, which already include IBM AIX and…
-
A critical security vulnerability, CVE-2024-45720 (CVSS 8.2), has been identified in Apache Subversion (SVN), a popular version control system widely used by developers to maintain source code, web pages, and documentation. This flaw primarily affects Windows platforms, with the potential for command line argument injection, leading to the execution of unintended programs.