August 15, 2024 at 11:34AM Microsoft disabled a BitLocker vulnerability fix due to firmware incompatibility, causing devices to enter recovery mode. The CVE-2024-38058 flaw allows attackers to bypass BitLocker encryption and access data. To mitigate the issue, users must follow a complex 4-stage process and may face limitations. Microsoft didn’t address the root cause, urging … Read more
January 31, 2024 at 08:48AM Ivanti has warned of two vulnerabilities affecting Connect Secure, Policy Secure, and ZTA gateways. The first vulnerability (CVE-2024-21893) is a zero-day bug allowing server-side request forgery, granting unauthorized access. The second flaw (CVE-2024-21888) enables privilege escalation. Ivanti has released security patches and mitigation measures. Threat actors have exploited these vulnerabilities, … Read more
January 22, 2024 at 01:27PM Ivanti advises administrators to refrain from pushing new device configurations to appliances after applying mitigations as it renders them defenseless against ongoing attacks exploiting two zero-day vulnerabilities. There have been large-scale attacks targeting Ivanti ICS and IPS appliances, with companies issuing mitigation measures and recovery instructions. Thousands of exposed appliances … Read more
January 15, 2024 at 08:07PM Volexity discovered mass exploitation of two zero-day vulnerabilities affecting Ivanti’s Connect Secure VPN and Policy Secure NAC appliances. The attacks by multiple threat groups have targeted organizations worldwide, including Fortune 500 companies and government departments. Mitigation measures and a list of malicious tools used in the attacks have been provided. … Read more
November 2, 2023 at 05:53PM Atlassian has issued a warning to admins about a critical security flaw in Confluence that could result in data destruction attacks. A public exploit for the vulnerability, tracked as CVE-2023-22518, has been found, putting Internet-exposed and unpatched instances at high risk. Atlassian has urged immediate action, including upgrading software and … Read more
October 17, 2023 at 09:20AM Attackers have exploited a critical zero-day bug to compromise and infect Cisco IOS XE devices with malicious implants. Threat intelligence company VulnCheck found thousands of compromised hosts. Cisco has advised administrators to disable the vulnerable HTTP server feature and look for breach indicators. A patch is not yet available. Key … Read more