Today's Core Dump is brought to you by ThreatPerspective

Biz & IT Ars Technica

Ransomware attackers quickly weaponize PHP vulnerability with 9.8 severity rating

TellYouThePass group opportunistically infects servers that have yet to update. Photograph depicts a security scanner extracting virus from a string of binary code. Hand with the word "exploit" Ransomware criminals have quickly weaponized an easy-to-exploit vulnerability in the PHP programming language that executes malicious code on web servers, security researchers said. As of Thursday, Internet scans performed by security firm Censys ...

Published: 2024-06-14T19:40:29



Biz & IT Ars Technica

China state hackers infected 20,000 Fortinet VPNs, Dutch spy service says

Critical code-execution flaw was under exploitation 2 months before company disclosed it. China state hackers infected 20,000 Fortinet VPNs, Dutch spy service says Hackers working for the Chinese government gained access to more than 20,000 VPN appliances sold by Fortinet using a critical vulnerability that the company failed to disclose for two weeks after fixing it, Netherlands government officials said. T...

Published: 2024-06-11T22:56:04



Biz & IT Ars Technica

Hackers steal “significant volume” of data from hundreds of Snowflake customers

Given shortcomings of Snowflake and its customers, there's plenty of blame to go around. Hackers steal “significant volume” of data from hundreds of Snowflake customers As many as 165 customers of cloud storage provider Snowflake have been compromised by a group that obtained login credentials through information-stealing malware, researchers said Monday. On Friday, Lending Tree subsidiary QuoteWizard confirmed i...

Published: 2024-06-10T22:08:42



Biz & IT Ars Technica

Nasty bug with very simple exploit hits PHP just in time for the weekend

With PoC code available and active Internet scans, speed is of the essence. Nasty bug with very simple exploit hits PHP just in time for the weekend A critical vulnerability in the PHP programming language can be trivially exploited to execute malicious code on Windows devices, security researchers warned as they urged those affected to take action before the weekend starts. Within 24 hours of...

Published: 2024-06-07T21:57:49



Biz & IT Ars Technica

London hospitals declare emergency following ransomware attack

Attack takes out third-party testing and diagnostics provider critical to care. London hospitals declare emergency following ransomware attack A ransomware attack that crippled a London-based medical testing and diagnostics provider has led several major hospitals in the city to declare a critical incident emergency and cancel non-emergency surgeries and pathology appointments, it was wi...

Published: 2024-06-04T21:16:20



Biz & IT Ars Technica

Ticketmaster hacked in what’s believed to be a spree hitting Snowflake customers

Researcher says Snowflake customers hit by mass scraping ... "but nobody noticed." Ticketmaster hacked in what’s believed to be a spree hitting Snowflake customers Cloud storage provider Snowflake said that accounts belonging to multiple customers have been hacked after threat actors obtained credentials through info-stealing malware or by purchasing them on online crime forums. Ticketmaster parent Live Nati...

Published: 2024-06-03T22:23:45



The Verge - Securities

A major disinformation research center's future looks uncertain

The Stanford Internet Observatory, a small but prominent research group studying abuse on social media platforms, looks to be in crisis, according to a report by Platformer. Some key staff have departed recently, including founding director...

Published: 2024-06-14T10:39:11



The Verge - Securities

Epic Games database leak hints at a trove of unannounced games

Epic Games logo An unofficial site tracking titles in the Epic Games library may have just leaked a ton of upcoming games, as reported earlier by Wccftech. The site, called EpicDB, was taken offline shortly after it posted information scraped from the Epic...

Published: 2024-06-12T12:22:47



The Verge - Securities

Life360 confirms a hacker stole Tile tracker IDs and customer info

Hand holding a black square tile tracker above a brown wooden table with a succulent plant on it. A hacker breached the systems behind Tile device trackers and stole customer data, including names, addresses, emails, and phone numbers. According to reporting from 404 Media, the hacker was able to collect customer information by accessin...

Published: 2024-06-12T12:13:30



The Verge - Securities

Ticketmaster's Snowflake data breach was just one of 165

A cartoon illustration shows a shadowy figure carrying off a red directory folder, which has a surprised-looking face on its side. Security researchers are reporting that a “significant volume of data” has been stolen from hundreds of Snowflake cloud storage customers via compromised login credentials, with the incident being linked to massive data breaches at Ticketma...

Published: 2024-06-11T10:57:56



The Verge - Securities

Apple's standalone Passwords app syncs across iOS, iPad, Mac, and Windows

Mac app, passwords At WWDC 2024, Apple revealed a new Passwords app that expands on its existing iCloud Keychain features and syncs your passwords across more devices. Now, with Passwords, Apple is releasing a standalone app to manage passwords and passkeys o...

Published: 2024-06-10T14:36:57



The Verge - Securities

Frontier hackers threaten to release private data for at least 750,000 customers

A cartoon illustration shows a shadowy figure carrying off a red directory folder, which has a surprised-looking face on its side. Frontier Communications has revealed that information for over 750,000 customers including full names and Social Security numbers was exposed in a data breach following a cyberattack on April 14th. Hackers claim to have even more and wi...

Published: 2024-06-10T06:08:14



The Verge - Securities

Apple might reveal a new Passwords app next week

Illustration of a password above an open combination lock, implying a data breach. Apple is planning to introduce a new app called Passwords to help users manage their login information, according to a report from Bloomberg. The company will reportedly introduce the device at its Worldwide Developers Conference event next...

Published: 2024-06-06T17:07:44



The Verge - Securities

Snowflake says there's no evidence attackers breached its platform to hack Ticketmaster

Illustration of a phone with yellow caution tape running over it. A Ticketmaster data breach that allegedly includes details for 560 million accounts and another one affecting Santander have been linked to their accounts at Snowflake, a cloud storage provider. However, Snowflake says there’s no evidence i...

Published: 2024-06-03T20:12:49



The Verge - Securities

Sony updates its camera app to offer multi-cam monitoring

Someone holding an iPad running Sony’s Monitor & Control app. Sony has released a new update for its Monitor & Control (M&C) mobile app that makes it easier for users to remotely observe and operate camera feeds on smartphones and tablets. Most notably, version 2.0.0 of the M&C app introdu...

Published: 2024-06-03T10:34:59



The Verge - Securities

Live Nation took 11 days to confirm the massive Ticketmaster data breach

A cartoon illustration shows a shadowy figure carrying off a red directory folder, which has a surprised-looking face on its side. Someone going by the name “ShinyHunters” has been advertising a 1.3TB cache of data allegedly containing personal data (names, email/home addresses, and phone numbers), credit card details, and other information about 560 million Ticketmast...

Published: 2024-05-31T20:11:04



BleepingComputer

New Linux malware is controlled through emojis sent from Discord

A newly discovered Linux malware dubbed 'DISGOMOJI' uses the novel approach of utilizing emojis to execute commands on infected devices in attacks on government agencies in India. [...]

Published: 2024-06-15T13:08:37



BleepingComputer

Microsoft: New Outlook security changes coming to personal accounts

Microsoft has announced new cybersecurity enhancements for Outlook personal email accounts as part of its 'Secure Future Initiative,' including the deprecation of basic authentication (username + password) by September 16, 2024. [...]

Published: 2024-06-15T10:12:24



BleepingComputer

Keytronic confirms data breach after ransomware gang leaks stolen files

PCBA manufacturing giant Keytronic is warning it suffered a data breach after the Black Basta ransomware gang leaked 530GB of the company's stolen data two weeks ago. [...]

Published: 2024-06-14T17:20:52



BleepingComputer

London hospitals cancel over 800 operations after ransomware attack

NHS England revealed today that multiple London hospitals impacted by last week's Synnovis ransomware attack were forced to cancel hundreds of planned operations and appointments. [...]

Published: 2024-06-14T14:05:51



BleepingComputer

CISA warns of Windows bug exploited in ransomware attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity Windows vulnerability abused in ransomware attacks as a zero-day to its catalog of actively exploited security bugs. [...]

Published: 2024-06-14T12:39:07



BleepingComputer

Scattered Spider hackers switch focus to cloud apps for data theft

The Scattered Spider gang has started to steal data from software-as-a-service (SaaS) applications and establish persistence through creating new virtual machines. [...]

Published: 2024-06-14T11:04:59



BleepingComputer

Insurance giant Globe Life investigating web portal breach

American financial services holding company Globe Life says attackers may have accessed consumer and policyholder data after breaching one of its web portals. [...]

Published: 2024-06-14T08:39:36



BleepingComputer

Microsoft delays Windows Recall amid privacy and security concerns

Microsoft is delaying the release of its AI-powered Windows Recall feature to test and secure it further before releasing it in a public preview on Copilot+ PCs. [...]

Published: 2024-06-13T22:11:39



BleepingComputer

Truist Bank confirms breach after stolen data shows up on hacking forum

Truist Bank, a leading U.S. commercial bank, confirmed this week that its systems were breached in an October 2023 cyberattack after a threat actor posted some of the company's data for sale on a hacking forum. [...]

Published: 2024-06-13T19:17:27



Technology

GPT-4 autonomously hacks zero-day security flaws with 53% success rate

An unattended laptop, rendered using AI tools, quietly works away autonomously A couple of months ago, a team of researchers released a paper saying they'd been able to use GPT-4 to autonomously hack one-day (or N-day) vulnerabilities these are security flaws that are already known, but for which a fix hasn't yet been release...

Published: 2024-06-09T03:48:31



Threat Intelligence

Insights on Cyber Threats Targeting Users and Enterprises in Brazil

Written by: Kristen Dennesen, Luke McNamara, Dmitrij Lenz, Adam Weidemann, Aline Bueno Individuals and organizations in Brazil face a unique cyber threat landscape because it is a complex interplay of global and local threats, posing significant

Published: 2024-06-12T14:00:00



Threat Intelligence

UNC5537 Targets Snowflake Customer Instances for Data Theft and Extortion

snowflake timeline Introduction Through the course of our incident response engagements and threat intelligence collections, Mandiant has identified a threat campaign targeting Snowflake customer database instances with the intent of data theft and extortion. Snowflake...

Published: 2024-06-10T10:00:00



Threat Intelligence

Phishing for Gold: Cyber Threats Facing the 2024 Paris Olympics

Written by: Michelle Cantos, Jamie Collier Executive Summary Mandiant assesses with high confidence that the Paris Olympics faces an elevated risk of cyber threat activity, including cyber espionage, disruptive and destructive operations, finan

Published: 2024-06-05T14:00:00



Threat Intelligence

Ransomware Rebounds: Extortion Threat Surges in 2023, Attackers Rely on Publicly Available and Legitimate Tools

Written by: Bavi Sadayappan, Zach Riddle, Jordan Nuce, Joshua Shilko, Jeremy Kennelly A version of this blog post was published to the Mandiant Advantage portal on April 18, 2024. Executive Summary In 2023, Mandiant observed an increase in ranso

Published: 2024-06-03T14:00:00



Threat Intelligence

IOC Extinction? China-Nexus Cyber Espionage Actors Use ORB Networks to Raise Cost on Defenders

Written by: Michael Raggi Mandiant Intelligence is tracking a growing trend among China-nexus cyber espionage operations where advanced persistent threat (APT) actors utilize proxy networks known as “ORB networks” (operational relay box networks)

Published: 2024-05-22T14:00:00



Threat Intelligence

Uncharmed: Untangling Iran's APT42 Operations

Written by: Ofir Rozmann, Asli Koksal, Adrian Hernandez, Sarah Bock, Jonathan Leathery APT42, an Iranian state-sponsored cyber espionage actor, is using enhanced social engineering schemes to gain access to victim networks, including cloud enviro

Published: 2024-05-01T14:00:00



Threat Intelligence

Ransomware Protection and Containment Strategies: Practical Guidance for Hardening and Protecting Infrastructure, Identities and Endpoints

ransomware-report-cover Written by: Matthew McWhirt, Omar ElAhdan, Glenn Staniforth, Brian Meyer Multi-faceted extortion via ransomware and/or data theft is a popular end goal for attackers, representing a global threat targeting organizat...

Published: 2024-04-30T14:00:00



Threat Intelligence

From Assistant to Analyst: The Power of Gemini 1.5 Pro for Malware Analysis

gemini-for-malware-analysis-fig8 Executive Summary A growing amount of malware has naturally increased workloads for defenders and particularly malware analysts, creating a need for improved automation and approaches to dealing with this classic threat. With the recent rise in g...

Published: 2024-04-29T14:00:00



Threat Intelligence

Poll Vaulting: Cyber Threats to Global Elections

Written by: Kelli Vanderlee, Jamie Collier Executive Summary The election cybersecurity landscape globally is characterized by a diversity of targets, tactics, and threats. Elections attract threat activity from a variety of threat actors inclu

Published: 2024-04-25T10:00:00



Threat Intelligence

Unearthing APT44: Russia’s Notorious Cyber Sabotage Unit Sandworm

Written by: Gabby Roncone, Dan Black, John Wolfram, Tyler McLellan, Nick Simonian, Ryan Hall, Anton Prokopenkov, Luke Jenkins, Dan Perez, Lexie Aytes, Alden Wahlstrom With Russia's full-scale invasion in its third year, Sandworm (aka FROZENBARENT

Published: 2024-04-17T10:00:00



Threat Intelligence

Apache XML Security for C++ Library Allows for Server-Side Request Forgery

Written by: Jacob Thompson The Apache XML Security for C++ library, code named xml-security-c, is part of the Apache Santuario project. The library implements the XML Digital Signature and the XML Signature specifications, making them available t

Published: 2024-04-09T14:00:00



Threat Intelligence

Cutting Edge, Part 4: Ivanti Connect Secure VPN Post-Exploitation Lateral Movement Case Studies

Written by: Matt Lin, Austin Larsen, John Wolfram, Ashley Pearson, Josh Murchie, Lukasz Lamparski, Joseph Pisano, Ryan Hall, Ron Craft, Shawn Chew, Billy Wong, Tyler McLellan Since the initial disclosure of CVE-2023-46805 and CVE-2024-21887 on Ja

Published: 2024-04-04T14:00:00



Threat Intelligence

SeeSeeYouExec: Windows Session Hijacking via CcmExec

Written by: Andrew Oliveau Over the last several years, the security community has witnessed an uptick in System Center Configuration Manager (SCCM)-related attacks. From extracting network access account (NAA) credentials to deploying malicious

Published: 2024-03-28T13:00:00



Threat Intelligence

Trends on Zero-Days Exploited In-the-Wild in 2023

Written by: Maddie Stone, Jared Semrau, James Sadowski Combined data from Google’s Threat Analysis Group (TAG) and Mandiant shows 97 zero-day vulnerabilities were exploited in 2023; a big increase over the 62 zero-day vulnerabilities identified i

Published: 2024-03-26T22:00:00



Threat Intelligence

APT29 Uses WINELOADER to Target German Political Parties

Written by: Luke Jenkins, Dan Black Executive Summary In late February, APT29 used a new backdoor variant publicly tracked as WINELOADER to target German political parties with a CDU-themed lure. This is the first time we have seen this APT29 c

Published: 2024-03-22T00:00:00



ProPublica

Microsoft President Grilled by Congress Over Cybersecurity Failures

by Renee Dudley ProPublica is a nonprofit newsroom that

Published: 2024-06-13T19:45:00



ProPublica

Microsoft Chose Profit Over Security and Left U.S. Government Vulnerable to Russian Hack, Whistleblower Says

by Renee Dudley, with research by Doris Burke ProPublic

Published: 2024-06-13T05:00:00



Blog | Sam Curry

Exploiting Directory Traversal to View Customer Credit Card Information on Yahoo's Small Business Platform

The Yahoo small business platform was storing user information in a set of directories that were protected simply by obscurity. The attacker, with knowledge of the victims email, could run an wordlist against a very predictable/guessable se

Published: 2017-11-10T00:00:00



Blog | Sam Curry

Hacking a Massive Steam Scamming and Phishing Operation for Fun and Profit

When I'm not doing bug bounty or studying for school I'll often be playing Counter-Strike: Global Offensive or PLAYERUNKNOWN'S BATTLEGROUNDS. Both of these games are awesome and really fun to play, but something interesting about them is th

Published: 2018-05-09T00:00:00



Blog | Sam Curry

The $12,000 Intersection between Clickjacking, XSS, and Denial of Service

The specific application that I've been targeting over the last few weeks is a bitcoin gambling website where a stock will progressively rise over time. The gambler decides the amount of money they would like to put in and a multiplier to p

Published: 2018-07-04T00:00:00



Blog | Sam Curry

Filling in the Blanks: Exploiting Null Byte Buffer Overflow for a $40,000 Bounty

I was in San Francisco the few days leading up to me finding this bug with some friends. We’d spent the day hacking before a few of us were traveling to Vegas for DEF CON the next day. Some of them were going on a road trip and I decided to

Published: 2019-11-01T00:00:00



Blog | Sam Curry

Hacking Starbucks and Accessing Nearly 100 Million Customer Records

After a long day of trying and failing to find vulnerabilities on the Verizon Media bug bounty program I decided to call it quits and do some chores. I needed to buy gifts for a friends birthday and went online to order a Starbucks gift car

Published: 2020-06-20T00:00:00



Blog | Sam Curry

We Hacked Apple for 3 Months: Here’s What We Found

Between the period of July 6th to October 6th myself, Brett Buerhaus, Ben Sadeghipour, Samuel Erb, and Tanner Barnes worked together and hacked on the Apple bug bounty program.

Published: 2020-10-07T00:00:00



Blog | Sam Curry

Hacking Chess.com and Accessing 50 Million Customer Records

Jackpot, full arbitrary account takeover of any chess.com user!

Published: 2020-12-16T00:00:00



Blog | Sam Curry

Exploiting Web3's Hidden Attack Surface: Universal XSS on Netlify's Next.js Library

On August 24th, 2022, we reported a vulnerability to Netlify affecting their Next.js "netlify-ipx" repository which would allow an attacker to achieve persistent cross-site scripting and full-response server side request forgery on any webs

Published: 2022-09-21T00:00:00



Blog | Sam Curry

Web Hackers vs. The Auto Industry: Critical Vulnerabilities in Ferrari, BMW, Rolls Royce, Porsche, and More

While we were visiting the University of Maryland, we came across a fleet of electric scooters scattered across the campus and couldn't resist poking at the scooter's mobile app. To our surprise, our actions caused the horns and headlights

Published: 2023-01-03T00:00:00



Blog | Sam Curry

Leaked Secrets and Unlimited Miles: Hacking the Largest Airline and Hotel Rewards Platform

Between March 2023 and May 2023, we identified multiple security vulnerabilities within points.com, the backend provider for a significant portion of airline and hotel rewards programs. These vulnerabilities would have enabled an attacker t

Published: 2023-08-03T00:00:00



Blog | Sam Curry

Hacking Millions of Modems (and Investigating Who Hacked My Modem)

Two years ago, something very strange happened to me while working from my home network. I was exploiting a blind XXE vulnerability that required an external HTTP server to smuggle out files, so I spun up an AWS box and ran a simple Python

Published: 2024-06-03T00:00:00



The Register - Security

Microsoft answered Congress' questions on security. Now the White House needs to act

Business as usual needs a real change Feature Microsoft president Brad Smith struck a conciliatory tone regarding his IT giant's repeated computer security failings during a congressional hearing on Thursday while also claiming the Windows maker is above the rule of law, at least in China.

Published: 2024-06-15T01:20:13



The Register - Security

Stanford Internet Observatory wilts under legal pressure during election year

Because who needs disinformation research at times like these The Stanford Internet Observatory (SIO), which for the past five years has been studying and reporting on social media disinformation, is being reimagined with new management and fewer staff following the recent departure of research director Renee DiResta.

Published: 2024-06-14T21:38:05



The Register - Security

Meta won't train AI on Euro posts after all, as watchdogs put their paws down

Facebook parent calls step forward for privacy a 'step backwards' Meta has caved to European regulators, and agreed to pause its plans to train AI models on EU users' Facebook and Instagram users' posts a move that the social media giant said will delay its plans to launch Meta AI in the economic zone.

Published: 2024-06-14T20:46:12



The Register - Security

Nigerian faces up to 102 years in the slammer for $1.5M phishing scam

Crook and his alleged co-conspirators said to have used Discord to coordinate The US Department of Justice has convicted a Nigerian national of participating in a business email compromise (BEC) scam worth $1.5 million.

Published: 2024-06-14T20:15:15



The Register - Security

Ukraine busts SIM farms targeting soldiers with spyware

Russia recruits local residents to support battlefield goals Infrastructure that enabled two pro-Russia Ukraine residents to break into soldiers' devices and deploy spyware has been dismantled by the Security Service of Ukraine (SSU).

Published: 2024-06-14T13:22:09



The Register - Security

French state bidding for piece of Atos, offers 700M

Big data + security division could be owed by the government and its people The French government has confirmed an offer of 700 million ($748 million) for key assets of ailing IT services giant Atos, following the company s acceptance of a restructuring deal earlier this week.

Published: 2024-06-14T11:33:10



The Register - Security

Microsoft bigwig says the Feds catching Chinese spies in Exchange Online is the cloud working as intended

'It's not our job to find the culprits That's what we're paying you for' lawmaker scolds Brad Smith Lawmakers on Thursday grilled Microsoft president Brad Smith about the Windows giant's businesses dealing in China and the super-corp's repeated security failings at a time when Beijing-backed spies are accused of breaking into Microsoft-hosted email accounts of American government officials.

Published: 2024-06-14T00:40:07



The Register - Security

US Space Force wanted $77M to reinforce GPS and Congress shot it down

Can't we do this another way, like without these mini-sats costing $1B over 5 years, House reps wonder A plan by America's Space Force to harden GPS against spoofing attacks may be going nowhere: A request by the service branch for $77 million of public cash to finish the work is struggling to get approval from Congress.

Published: 2024-06-13T22:42:10



The Register - Security

Oracle Ads have had it: $2B operation shuts down after dwindling to $300M

In this slightly more private era, your data ain't as profitable as it once was Analysis Oracle Advertising is shutting down, CEO Safra Catz said during the database goliath's fiscal 2024 Q4 earnings call with Wall Street this week.

Published: 2024-06-13T19:55:12



The Register - Security

Ukrainian cops collar Kyiv programmer believed to be Conti, LockBit linchpin

28-year-old accused of major ransomware attacks across Europe An alleged cog in the Conti and LockBit ransomware machines is now in handcuffs after Ukrainian police raided his home this week.

Published: 2024-06-13T16:27:06



The Register - Security

Google's Privacy Sandbox more like a privacy mirage, campaigners claim

Chocolate Factory accused of misleading Chrome browser users Updated Privacy campaigner noyb has filed a GDPR complaint regarding Google's Privacy Sandbox, alleging that turning on a "Privacy Feature" in the Chrome browser resulted in unwanted tracking by the US megacorp.

Published: 2024-06-13T13:30:09



The Register - Security

Student's flimsy bin bags blamed for latest NHS data breach

Confidential patient information found by member of the public A data protection gaffe affecting the UK's NHS is being pinned on a medical student who placed too much trust in their bin bags.

Published: 2024-06-13T11:30:07



The Register - Security

Time to zero in on Zero Trust?

Recently discovered vulnerabilities in VPN services should push ASEAN organizations to rethink their perimeter security approach Sponsored Post Companies the ASEAN region have long relied on a virtual private network (VPN) to help encrypt their Internet traffic and protect users' online identities.

Published: 2024-06-13T03:12:12



The Register - Security

Crooks crack customer info at tracking device vendor Tile, issue 'extortion' demands

Who tracks the trackers? Life360, purveyor of "Tile" Bluetooth tracking devices and developer of associated apps, has revealed it is dealing with a "criminal extortion attempt" after unknown miscreants contacted it with an allegation they had customer data in their possession.

Published: 2024-06-13T01:15:13



The Register - Security

Ransomware crew may have exploited Windows make-me-admin bug as a zero-day

Symantec suggests Black Basta crew beat Microsoft to the patch The Black Basta ransomware gang may have exploited a now-patched Windows privilege escalation bug as a zero-day, according to Symantec's threat hunters.

Published: 2024-06-12T22:10:13



The Register - Security

White House report dishes deets on all 11 major government breaches from 2023

The MOVEit breach and ransomware weren t kind to the Feds last year The number of cybersecurity incidents reported by US federal agencies rose 9.9 percent year-on-year (YoY) in 2023 to a total of 32,211, per a new White House report, which also spilled the details on the most serious incidents suffered across the government.

Published: 2024-06-12T16:15:11



The Register - Security

China's FortiGate attacks more extensive than first thought

Dutch intelligence says at least 20,000 firewalls pwned in just a few months The Netherlands' cybersecurity agency (NCSC) says the previously reported attack on the country's Ministry of Defense (MoD) was far more extensive than previously thought.

Published: 2024-06-12T14:00:14



The Register - Security

Let's kick off our summer with a pwn-me-by-Wi-Fi bug in Microsoft Windows

Redmond splats dozens of bugs as does Adobe while Arm drivers and PHP under active attack Patch Tuesday Microsoft kicked off our summer season with a relatively light June Patch Tuesday, releasing updates for 49 CVE-tagged security flaws in its products including one bug deemed critical, a fairly terrifying one in wireless networking, and one listed as publicly disclosed.

Published: 2024-06-12T00:29:10



The Register - Security

Pure Storage pwned, claims data plundered by crims who broke into Snowflake workspace

Secure storage company hasn't spilled details on how they got in Pure Storage is the latest company to confirm it's a victim of mounting Snowflake-related data breaches.

Published: 2024-06-11T18:01:10



The Register - Security

Cylance clarifies data breach details, except where the data came from

Customers, partners, operations remain uncompromised, BlackBerry says BlackBerry-owned cybersecurity shop Cylance says the data allegedly belonging to it and being sold on a crime forum doesn't endanger customers, yet it won't say where the information was stored originally.

Published: 2024-06-11T16:30:09



The Register - Security

UK and Canada's data chiefs join forces to investigate 23andMe mega-breach

Three-pronged approach aims to uncover any malpractice at the Silicon Valley biotech biz The data protection watchdogs of the UK and Canada are teaming up to hunt down the facts behind last year's 23andMe data breach.

Published: 2024-06-11T13:30:10



The Register - Security

Snowflake customers not using MFA are not unique over 165 of them have been compromised

Mandiant warns criminal gang UNC5537, which may be friendly with Scattered Spider, is on the rampage An unknown financially motivated crime crew has swiped a "significant volume of records" from Snowflake customers' databases using stolen credentials, according to Mandiant.

Published: 2024-06-11T03:27:13



The Register - Security

Japanese vid-sharing site Niconico needs rebuild after cyberattack

Offline for four days and counting, as are parent company and e-commerce brand Japanese media conglomerate Kadokawa and several of its properties have been offline for four days after a major cyber attack.

Published: 2024-06-11T02:00:29



The Register - Security

Christie's confirms RansomHub crooks stole data on 45K clients

A far cry from the half-million claim that crims originally boasted Auction house to the wealthy Christie's says 45,798 people were affected by its recent cyberattack and resulting data theft.

Published: 2024-06-10T17:00:11



The Register - Security

Snowflake tells customers to enable MFA as investigations continue

Also, industry begs Uncle Sam for infosec reg harmony, dueling container-compromise campaigns, and crit vulns infosec in brief Cloud data analytics platform Snowflake said it is going to begin forcing customers to implement multi-factor authentication to prevent more intrusions.

Published: 2024-06-10T12:30:06



The Register - Security

Two cuffed over suspected smishing campaign using 'text message blaster'

Thousands of dodgy SMSes bypassed network filters in UK-first case, it is claimed British police have arrested two individuals following an investigation into an SMS-based phishing campaign using some kind of homebrew hardware.

Published: 2024-06-10T11:31:00



The Register - Security

Akira: Perhaps the next big thing in ransomware, says Tidal threat intelligence chief

Scott Small tells us gang's 'intent and capability' should get the attention of CSOs Interview It might not be as big a name as BlackCat or LockBit, but the Akira ransomware is every bit as dangerous, says one cybersecurity researcher and it's poised to make a big impact.

Published: 2024-06-09T12:10:11



The Register - Security

Uber ex-CSO Joe Sullivan: We need security leaders running to work, not giving up

Lessons learned from the infosec chief convicted and punished for covering up theft of data from taxi app maker Interview Joe Sullivan the now-former Uber chief security officer who was found guilty of covering-up a theft of data from Uber in 2016 remembers sitting down and thinking through the worst-case scenarios he faced following that guilty verdict in 2022.

Published: 2024-06-08T14:40:07



The Register - Security

New York Times source code leaks online via 4chan

Breaking breaking-news news Updated A 4chan user has leaked 270GB of internal New York Times data, including what's said to be source code and other web assets, via the notorious image board.

Published: 2024-06-07T23:39:24



The Register - Security

FCC takes some action against notorious BGP

How's your RPKI-based security plan coming along? Feds want to know US broadband providers will soon have to provide proof to Uncle Sam that they are taking steps to prevent Border Gateway Protocol (BGP) hijacking and locking down internet routing in general.

Published: 2024-06-07T22:29:07



The Register - Security

Defiant Microsoft pushes ahead with controversial Recall tho as an opt-in

Windows maker acknowledges 'clear signal' from everyone, then mostly ignores it Microsoft is not giving up on its controversial Windows Recall, though says it will give customers an option to opt in instead of having it on by default, and will beef up the security of any data the software stores.

Published: 2024-06-07T19:40:54



The Register - Security

Frontier Communications: 750k people's data stolen in April attack on systems

Company says just names and SSNs affected, watering down RansomHub s claims Frontier Communications has confirmed more than 750,000 individuals were affected in an April cyberattack on its systems, according to a regulatory filing.

Published: 2024-06-07T18:09:08



The Register - Security

Cisco fixes WebEx flaw that allowed government, military meetings to be spied on

Researchers were able to glean data from 10,000 meetings held by top Dutch gov officials Cisco squashed some bugs this week that allowed anyone to view WebEx meeting information and join them, potentially opening up security and privacy concerns for highly sensitive meets.

Published: 2024-06-07T15:04:14



The Register - Security

Russian hacktivists vow mass attacks against EU elections

But do they get to wear 'I DDoSed' stickers? A Russian hacktivist crew has threatened to attack European internet infrastructure as four days of EU elections begin on Thursday.

Published: 2024-06-07T10:29:06



The Register - Security

Spam blocklist SORBS closed by its owner, Proofpoint

Spammers will probably bid to buy it, so community is trying to find a better home for decades-old service Exclusive The Spam and Open Relay Blocking System (SORBS) a longstanding source of info on known sources of spam widely used to create blocklists has been shuttered by its owner, cyber security software vendor Proofpoint.

Published: 2024-06-07T06:27:13



The Register - Security

POC exploit code published for 9.8-rated Apache HugeGraph RCE flaw

You upgraded when this was fixed in April, right? Right?? If you haven't yet upgraded to version 1.3.0 of Apache HugeGraph, now's a good time because at least two proof-of-concept exploits for a CVSS 9.8-rated remote command execution bug in the open-source graph database have been made public.

Published: 2024-06-07T01:16:12



The Register - Security

FBI encourages LockBit victims to step right up for free decryption keys

The bad news? Gang wasn't deleting victim data after payments LockBit victims who are still trying to clean up their encrypted files are in luck: the FBI has a big set of decryption keys it would love to let you try.

Published: 2024-06-06T19:45:08



The Register - Security

Uncle Sam seeks to claw back $5M+ stolen from trade union through spoofed email

Funds are currently seized after being sent to offshore accounts The US Justice Department is seeking permission to recover more than $5 million worth of funds stolen from a trade union by business email compromise (BEC) scammers.

Published: 2024-06-06T13:30:09



The Register - Security

Microsoft shows venerable and vulnerable NTLM security protocol the door

Time to get moving if you still rely on this deprecated feature Microsoft has finally decided to add the venerable NTLM authentication protocol to the Deprecated Features list.

Published: 2024-06-06T12:00:05



The Register - Security

7-year-old Oracle WebLogic bug under active exploitation

Experts say Big Red will probably re-release patch in an upcoming cycle A seven-year-old Oracle vulnerability is the latest to be added to CISA's Known Exploited Vulnerability (KEV) catalog, meaning the security agency considers it a significant threat to federal government.

Published: 2024-06-06T10:37:11



The Register - Security

Microsoft Research chief scientist has no issue with Windows Recall

As tool emerges to probe OS feature's SQLite-based store of user activities Asked to explore the data privacy issues arising from Microsoft Recall, the Windows maker's poorly received self-surveillance tool, Jaime Teevan, chief scientist and technical fellow at Microsoft Research, brushed aside concerns.

Published: 2024-06-06T07:26:08



The Register - Security

TikTok confirms CNN, other high-profile accounts hijacked via zero-day vulnerability

Beware of zero-click malware sliding into your DMs Miscreants exploited a zero-day in TikTok to compromised the accounts of CNN and other big names. The app maker has confirmed there was a cyberattack, and that it has scrambled to secure accounts and prevent any further exploitation.

Published: 2024-06-05T21:45:10



The Register - Security

What is RansomHub? Looks like a Knight ransomware reboot

Malware code potentially sold off, tweaked, back at it infecting victims RansomHub, a newish cyber-crime operation that has claimed to be behind the theft of data from Christie's auction house and others, is "very likely" some kind of rebrand of the Knight ransomware gang, according to threat hunters.

Published: 2024-06-05T20:13:05



The Register - Security

Emergency patches released for critical vulns impacting EOL Zyxel NAS boxes

That backdoor's not meant to be there? Zyxel just released security fixes for two of its obsolete network-attached storage (NAS) devices after an intern at a security vendor reported critical flaws months ago.

Published: 2024-06-05T17:30:10



The Register - Security

4 cuffed following probe into holiday scheme for cybercrooks

Public officials allegedly bribed to allow extradition-dodging travel Four arrests were made this week as part of an international probe into two overlapping corruption schemes that allowed cybercrims on INTERPOL watch lists to travel freely without flagging any alerts.

Published: 2024-06-05T12:06:01



The Register - Security

Microsoft paid Tenable a bug bounty for an Azure flaw it says doesn't need a fix, just better documentation

Let customers interfere with other tenants? That's our cloud working by design, Redmond seems to say A vulnerability or just Azure working as intended, depending on who you ask in Microsoft's cloud potentially allows miscreants to wave away firewall rules and access other people's private web resources.

Published: 2024-06-05T06:44:14



The Register - Security

Command senior chief busted for secretly setting up Wi-Fi on US Navy combat ship

In the Navy, no, you cannot have an unauthorized WLAN. In the Navy, no, that's not a good plan The US Navy has cracked down on an illicit Wi-Fi network installed on a combat ship by demoting the senior enlisted leader who ordered it to be set up.

Published: 2024-06-04T20:04:06



The Register - Security

Pentagon 'doubling down' on Microsoft despite 'massive hack,' senators complain

Meanwhile Mr Smith goes to Washington to testify before Congress The Pentagon is "doubling down" on its investment in Microsoft products despite the serious failings at the IT giant that put America's national security at risk, say two US senators.

Published: 2024-06-04T18:42:08



The Register - Security

London hospitals left in critical condition after ransomware attack

Pathology lab provider targeted, affecting blood transfusions and surgeries Hospitals in London are struggling to deliver pathology services after a ransomware attack at a service partner downed some key systems.

Published: 2024-06-04T15:43:24



The Register - Security

Christie's stolen data sold to highest bidder rather than leaked, RansomHub claims

Experts say auctioning the auctioneer s data is unlikely to have been genuinely successful The cybercrims who claimed the attack on Christie's fancy themselves as auctioneers as well, after they allegedly sold off the company's data to the highest bidder instead of leaking everything on the dark web.

Published: 2024-06-04T14:32:51



Security Latest

How to Spot a Business Email Compromise Scam

In this common email scam, a criminal pretending to be your boss or coworker emails you asking for a favor involving money. Here's what do to when a bad actor lands in your inbox.

Published: 2024-06-16T12:00:00



Security Latest

Let Slip the Robot Dogs of War

The United States and China appear locked in a race to weaponize four-legged robots for military applications.

Published: 2024-06-16T09:00:00



Security Latest

A Guide to RCS, Why Apple’s Adopting It, and How It Makes Texting Better

The messaging standard promises better security and cooler features than plain old SMS. Android has had it for years, but now iPhones are getting it too.

Published: 2024-06-15T12:30:00



Security Latest

Ukrainian Sailors Are Using Telegram to Avoid Being Tricked Into Smuggling Oil for Russia

Contract seafarers in Ukraine are turning to online whisper networks to keep themselves from being hired into Russia’s sanctions-busting shadow fleet.

Published: 2024-06-15T11:00:00



Security Latest

Ransomware Attacks Are Getting Worse

Plus: US lawmakers have nothing to say about an Israeli influence campaign aimed at US voters, a former LA Dodgers owner wants to fix the internet, and more.

Published: 2024-06-15T10:30:00



Security Latest

Medical-Targeted Ransomware Is Breaking Records After Change Healthcare’s $22M Payout

Cybersecurity firm Recorded Future counted 44 health-care-related incidents in the month after Change Healthcare’s payment came to light the most it’s ever seen in a single month.

Published: 2024-06-12T10:30:00



Security Latest

US Leaders Dodge Questions About Israel’s Influence Campaign

Democratic leader Hakeem Jeffries has joined US intelligence officials in ignoring repeated inquiries about Israel’s “malign” efforts to covertly influence US voters.

Published: 2024-06-11T16:13:26



Security Latest

Ransomware Is ‘More Brutal’ Than Ever in 2024

As the fight against ransomware slogs on, security experts warn of a potential escalation to “real-world violence.” But recent police crackdowns are successfully disrupting the cybercriminal ecosystem.

Published: 2024-06-10T14:01:49



Security Latest

Apple Is Coming for Your Password Manager

Plus: A media executive is charged in an alleged money-laundering scheme, a ransomware attack disrupts care at London hospitals, and Google’s former CEO has a secretive drone project up his sleeve.

Published: 2024-06-08T10:30:00



Security Latest

Microsoft Will Switch Off Recall by Default After Security Backlash

After weeks of withering criticism and exposed security flaws, Microsoft has vastly scaled back its ambitions for Recall, its AI-enabled silent recording feature, and added new privacy features.

Published: 2024-06-07T16:11:00



Security Latest

Microsoft’s Recall Feature Is Even More Hackable Than You Thought

A new discovery that the AI-enabled feature’s historical data can be accessed even by hackers without administrator privileges only contributes to the growing sense that the feature is a “dumpster fire.”

Published: 2024-06-07T00:42:44



Security Latest

The Snowflake Attack May Be Turning Into One of the Largest Data Breaches Ever

The number of alleged hacks targeting the customers of cloud storage firm Snowflake appears to be snowballing into one of the biggest data breaches of all time.

Published: 2024-06-06T19:41:06



Security Latest

The Lords of Silicon Valley Are Thrilled to Present a ‘Handheld Iron Dome’

ZeroMark wants to build a system that will let soldiers easily shoot a drone out of the sky with the weapons they’re already carrying and venture capital firm a16z is betting the startup can pull it off.

Published: 2024-06-06T10:30:00



Security Latest

How to Lead an Army of Digital Sleuths in the Age of AI

Eliot Higgins and his 28,000 forensic foot soldiers at Bellingcat have kept a miraculous nose for truth and a sharp sense of its limits in Gaza, Ukraine, and everywhere else atrocities hide online.

Published: 2024-06-06T07:00:00



Security Latest

The Age of the Drone Police Is Here

A WIRED investigation, based on more than 22 million flight coordinates, reveals the complicated truth about the first full-blown police drone program in the US and why your city could be next.

Published: 2024-06-05T10:00:00



Security Latest

A US Company Enabled a North Korean Scam That Raised Money for WMDs

Wyoming’s secretary of state has proposed ways of “preventing fraud and abuse of corporate filings by commercial registered agents” in the aftermath of the scheme’s exposure.

Published: 2024-06-05T09:30:00



Security Latest

TikTok Hack Targets ‘High-Profile’ Users via DMs

TikTok has confirmed a “potential exploit” that is being used to go after accounts belonging to media organizations and celebrities, including CNN and Paris Hilton, through direct messages.

Published: 2024-06-04T18:11:11



Security Latest

This Hacker Tool Extracts All the Data Collected by Windows’ New Recall AI

Windows Recall takes a screenshot every five seconds. Cybersecurity researchers say the system is simple to abuse and one ethical hacker has already built a tool to show how easy it really is.

Published: 2024-06-04T15:08:25



Security Latest

AI Is Your Coworker Now. Can You Trust It?

Generative AI tools such as OpenAI’s ChatGPT and Microsoft’s Copilot are becoming part of everyday business life. But they come with privacy and security considerations you should know about.

Published: 2024-06-04T11:00:00



Security Latest

Inside the Biggest FBI Sting Operation in History

When a drug kingpin named Microsoft tried to seize control of an encrypted phone company for criminals, he was playing right into its real owners’ hands.

Published: 2024-06-04T10:00:00



News Packet Storm

GenAI An Enhancement For Cyberattackers And Defenders

Life360 Says Hacker Stole Customer Data

Microsoft Delaying Recall Feature To Improve Security

Ukrainian Cops Collar Kyiv Programmer Believed To Be Conti, LockBit Linchpin

Black Basta Exploits Patched Windows Privilege Escalation Bug

Kaspersky Researchers Punch Holes In Biometrics Hardware Security

Prevalence And Impact Of Password Exposure Vulns In ICS/OT

Apple Patches Possibly The First Ever Spatial Computing Hack

White House Report Dishes Deet On All 11 Major Government Breaches From 2023

Microsoft President To Testify Over Security Lapses

Ransomware Group Exploits PHP Vulnerability Days After Disclosure

Let's Kick Off The Summer With A Pwn-Me-By-Wifi Bug In Microsoft Windows

China State Hackers Infected 20,000 Fortinet VPNs

23andMe Investigated Over Hack That Hit 7M Users

GitHub Phishing Campaign Wipes Repos, Extorts Victims

Cylance Clarifies Breach Details, Except Where The Data Came From

Let's Unroll Some Questions About Russia's Role In North Korea's Rocket Program

Ransomware Gangs Are Adopting More Brutal Tactics Amidst Crackdowns

Why Passwords Still Matter In The Age Of AI

VSCode Extensions With Malicious Code Installed 229M Times

Arm Warns Of Exploited Kernel Driver Vulnerability

Mandiant Links Snowflake Breaches To Infostealer Infections

FCC Approves $200 Million For Cybersecurity In Schools

PHP Updates Urged Over Critical Vuln That Could Lead To RCE

Christie's Says Ransomware Attack Impacts 45,000 People

SecurityWeek

Vermont Governor Vetoes Data Privacy Bill, Saying State Would be Most Hostile to Businesses

Pakistani Threat Actors Caught Targeting Indian Gov Entities

OpenAI Appoints Former NSA Director Paul Nakasone to Board of Directors

Edge Devices: The New Frontier for Mass Exploitation Attacks

Ascension Says Personal, Health Information Stolen in Ransomware Attack

In Other News: Fuxnet ICS Malware, Google User Tracking, CISA Employee Scams

Rockwell Automation Patches High-Severity Vulnerabilities in FactoryTalk View SE

CISA Warns of Progress Telerik Vulnerability Exploitation

Microsoft Delaying Recall Feature to Improve Security

French Bug Bounty Platform YesWeHack Raises $28 Million

CISA News

CISA, JCDC, Government and Industry Partners Conduct AI Tabletop Exercise

CISA Hosts First Annual Information and Communications Technology Supply Chain Risk Management Task Force Conference

Readout from CISA’s 2024 Second Quarter Cybersecurity Advisory Committee Meeting

CISA and ONCD Award the Winners of the Fifth Annual President’s Cup Cybersecurity Competition

CISA Publishes Encrypted DNS Implementation Guidance to Federal Agencies

CISA, DHS, FBI and International Partners Publish Guide for Protecting High-Risk Communities

CISA Announces Secure by Design Commitments from Leading Technology Providers

CISA Unveils New Public Service Announcement We Can Secure Our World

DHS, CISA Announce Membership Changes to the Cyber Safety Review Board

CISA Releases Physical Security Checklist to Help Election Officials Secure Polling Locations

CISA Blog

National Internet Safety Month: This June, Take 4 Easy Steps to Stay Safe Online

NCSWIC releases the NCSWIC Video Series

A Plan to Protect Critical Infrastructure from 21st Century Threats

Prepared Together Cyber Storm IX Recap

Securing Tomorrow: A Recap of CISA’s Cyber Resilient 911 Symposium (Central Region)

Opening Statement by CISA Director Jen Easterly at the Update on Foreign Threats to the 2024 Elections Hearing

CISA Updates Toolkit with Nine New Resources to Promote Public Safety Communications and Cyber Resiliency

Categorically Unsafe Software

The Top Four Things Tech Manufacturers can do to Bolster the Cybersecurity of Target-Rich, Cyber-Poor Organizations

SAFECOM Publishes 2024 SAFECOM Strategic Plan

All CISA Advisories

Motorola Solutions Vigilant License Plate Readers

Siemens Mendix Applications

Siemens ST7 ScadaConnect

Siemens PowerSys

Siemens SIMATIC and SIPLUS

Siemens SINEC Traffic Analyzer

Rockwell Automation FactoryTalk View SE

CISA Releases Twenty Industrial Control Systems Advisories

Siemens SIMATIC S7-200 SMART Devices

Siemens SITOP UPS1600

Exploit-DB.com RSS Feed

[webapps] Boelter Blue System Management 1.3 - SQL Injection

[webapps] Rebar3 3.13.2 - Command Injection

[webapps] ZwiiCMS 12.2.04 - Remote Code Execution (Authenticated)

[remote] Zyxel IKE Packet Decoder - Unauthenticated Remote Code Execution (Metasploit)

[webapps] WP-UserOnline 2.88.0 - Stored Cross Site Scripting (XSS) (Authenticated)

[webapps] PHP < 8.3.8 - Remote Code Execution (Unauthenticated) (Windows)

[webapps] AEGON LIFE v1.0 Life Insurance Management System - SQL injection vulnerability.

[webapps] AEGON LIFE v1.0 Life Insurance Management System - Unauthenticated Remote Code Execution (RCE)

[webapps] XMB 1.9.12.06 - Stored XSS

[webapps] Carbon Forum 5.9.0 - Stored XSS

[webapps] AEGON LIFE v1.0 Life Insurance Management System - Stored cross-site scripting (XSS)

[webapps] appRain CMF 4.0.5 - Remote Code Execution (RCE) (Authenticated)

[webapps] CMSimple 5.15 - Remote Code Execution (RCE) (Authenticated)

[webapps] WBCE CMS v1.6.2 - Remote Code Execution (RCE)

[webapps] Monstra CMS 3.0.4 - Remote Code Execution (RCE)

[webapps] Dotclear 2.29 - Remote Code Execution (RCE)

[webapps] Serendipity 2.5.0 - Remote Code Execution (RCE)

[webapps] Sitefinity 15.0 - Cross-Site Scripting (XSS)

[webapps] Craft CMS Logs Plugin 3.0.3 - Path Traversal (Authenticated)

[remote] ASUS ASMB8 iKVM 1.14.51 - Remote Code Execution (RCE) & SSH Access

[remote] Wipro Holmes Orchestrator 20.4.1 - Log File Disclosure

[webapps] FreePBX 16 - Remote Code Execution (RCE) (Authenticated)

[webapps] Akaunting 3.1.8 - Server-Side Template Injection (SSTI)

[webapps] Check Point Security Gateway - Information Disclosure (Unauthenticated)

[webapps] Aquatronica Control System 5.1.6 - Information Disclosure

[webapps] changedetection < 0.45.20 - Remote Code Execution (RCE)

[webapps] ElkArte Forum 1.1.9 - Remote Code Execution (RCE) (Authenticated)

[webapps] iMLog < 1.307 - Persistent Cross Site Scripting (XSS)

[webapps] BWL Advanced FAQ Manager 2.0.3 - Authenticated SQL Injection

[webapps] htmlLawed 1.2.5 - Remote Code Execution (RCE)

[webapps] PopojiCMS 2.0.1 - Remote Command Execution (RCE)

[webapps] Backdrop CMS 1.27.1 - Authenticated Remote Command Execution (RCE)

[webapps] Apache OFBiz 18.12.12 - Directory Traversal

[webapps] Wordpress Theme XStore 9.3.8 - SQLi

[webapps] Rocket LMS 1.9 - Persistent Cross Site Scripting (XSS)

[webapps] Prison Management System - SQL Injection Authentication Bypass

[webapps] PyroCMS v3.0.1 - Stored XSS

[webapps] CE Phoenix Version 1.0.8.20 - Stored XSS

[webapps] Leafpub 1.1.9 - Stored Cross-Site Scripting (XSS)

[webapps] Chyrp 2.5.2 - Stored Cross-Site Scripting (XSS)

[remote] CrushFTP < 11.1.0 - Directory Traversal

[local] Plantronics Hub 3.25.1 - Arbitrary File Read

[webapps] Apache mod_proxy_cluster - Stored XSS

[webapps] iboss Secure Web Gateway - Stored Cross-Site Scripting (XSS)

[webapps] Clinic Queuing System 1.0 - RCE

[webapps] Elber Reble610 M/ODU XPIC IP-ASI-SDH Microwave Link - Device Config Disclosure

[webapps] Elber Reble610 M/ODU XPIC IP-ASI-SDH Microwave Link - Authentication Bypass

[webapps] Elber Cleber/3 Broadcast Multi-Purpose Platform 1.0.0 - Device Config Disclosure

[webapps] Elber Cleber/3 Broadcast Multi-Purpose Platform 1.0.0 - Authentication Bypass

[webapps] Elber Signum DVB-S/S2 IRD For Radio Networks 1.999 - Device Config Disclosure

Full Disclosure

Business Logic Flaw and Username Enumeration in spa-cartcmsv1.9.0.6

APPLE-SA-06-10-2024-1 visionOS 1.2

CyberDanube Security Research 20240604-0 | Multiple Vulnerabilities in utnserver Pro/ProMAX/INU-100

SEC Consult SA-20240606-0 :: Multiple critical vulnerabilities in Kiuwan SAST on-premise (KOP) & cloud/SaaS & Kiuwan Local Analyzer (KLA)

Blind SQL Injection - fengofficev3.11.1.2

Trojan.Win32.DarkGateLoader (multi variants) / Arbitrary Code Execution

SQL Injection Vulnerability in Boelter Blue System Management (version 1.3)

CyberDanube Security Research 20240528-0 | Multiple Vulnerabilities in ORing IAP-420

HNS-2024-06 - HN Security Advisory - Multiple vulnerabilities in Eclipse ThreadX

SEC Consult SA-20240527-0 :: Multiple vulnerabilities in HAWKI didactic interface

SEC Consult SA-20240524-0 :: Exposed Serial Shell on multiple PLCs in Siemens CP-XXXX Series

SEC Consult SA-20240522-0 :: Broken access control & API Information Exposure in 4BRO App

[CFP] Security BSides Ljubljana 0x7E8 | September 27, 2024

asterisk release 20.8.1

asterisk release 21.3.1

Open Source Security

iTerm2 3.5.x title reporting bug

Re: Security vulnerability in fprintd

Re: Security vulnerability in fprintd

Re: Security vulnerability in fprintd

Re: Security vulnerability in fprintd

Re: Security vulnerability in fprintd

CVE-2024-25142: Apache Airflow: Cache Control - Storage of Sensitive Data in Browser Cache

Re: Re: CVE-2024-35235 cups: Cupsd Listen arbitrary chmod 0140777

Re: CVE-2024-35235 cups: Cupsd Listen arbitrary chmod 0140777

CVE-2024-36265: Apache Submarine Server Core: authorization bypass

CVE-2024-36264: Apache Submarine Commons Utils: default secret

CVE-2024-36263: Apache Submarine Server Core: SQL injection

CVE-2024-35235 cups: Cupsd Listen arbitrary chmod 0140777

CVE-2024-36471: Apache Allura: sensitive information exposure via DNS rebinding

Re: vte 0.76.3 released with fix for CVE-2024-37535






© Segmentation Fault . All rights reserved.

Privacy | Terms of Use | Contact Us