January 31, 2024 at 05:30AM Multiple Hitron DVR device models are exploited by the InfectedSlurs botnet, utilizing vulnerabilities to launch DDoS attacks. Akamai reports discovering six zero-day vulnerabilities and urges immediate firmware updates and password changes. CISA advises isolating these devices, using VPNs, and collaborating for a comprehensive security approach. KISA has also issued alerts … Read more
January 31, 2024 at 02:36AM Two zero-day flaws in Ivanti Connect Secure (ICS) VPN have been exploited to distribute the Rust-based KrustyLoader and the Sliver adversary simulation tool. Identified as CVE-2023-46805 and CVE-2024-21887, the flaws allow unauthenticated remote code execution with delayed patches. The vulnerabilities have been utilized by threat actors and other adversaries. Key … Read more
January 30, 2024 at 09:42AM Juniper Networks has released patches for multiple vulnerabilities in the J-Web component of Junos OS. The most severe issue is a cross-site scripting flaw (CVE-2024-21620), with a CVSS score of 8.8. Another defect (CVE-2024-21619) could allow an unauthenticated attacker to access sensitive information. Two missing authentication bugs were also resolved. … Read more
January 30, 2024 at 03:59AM Juniper Networks released out-of-band updates for high-severity flaws in SRX and EX Series, addressing missing authentication and cross-site scripting vulnerabilities. watchTowr Labs discovered and reported the issues. Temporary mitigations include disabling J-Web or restricting access. Earlier critical vulnerability fixes were also shipped. U.S. CISA added previously disclosed vulnerabilities to the … Read more
January 29, 2024 at 03:06PM Ivanti is facing delays in delivering patches for critical vulnerabilities in its Connect Secure VPN appliances, which have already been exploited. The company missed its promised timeline and now aims to release patches next week. The delays come after Chinese hackers exploited zero-day vulnerabilities, raising concerns for US government agencies … Read more
January 26, 2024 at 04:04PM The threat actor remained undetected for over five years due to a sophisticated backdoor delivered through invisible adversary-in-the-middle attacks. It sounds like the meeting covered the discovery of a threat actor who went undetected for more than five years due to a sophisticated backdoor delivered through invisible adversary-in-the-middle attacks. This … Read more
January 26, 2024 at 12:57AM Cisco has released patches for a critical security flaw (CVE-2024-20253) affecting Unified Communications and Contact Center Solutions products, allowing an attacker to execute arbitrary code. The flaw impacts various products including Unified Communications Manager and Unity Connection. Users are advised to set up access control lists while awaiting updates. Cisco … Read more
January 25, 2024 at 12:59PM A new critical bug (CVE-2024-20253, 9.9 CVSS) in Cisco UC/CC solutions poses an unauthenticated remote code execution risk. Attackers can exploit the bug through specially crafted messages, potentially leading to data breaches, service disruption, and unauthorized system access. Cisco has issued patches and recommended interim measures to mitigate the vulnerability. … Read more
January 25, 2024 at 12:48PM The text highlights the challenges faced by modern organizations with MPLS, citing its outdated design, high costs, and limitations in service level agreements. It discusses the potential replacement of MPLS with alternatives such as the internet, SD-WAN, and Secure Access Service Edge (SASE), emphasizing the benefits and growing adoption of … Read more
January 23, 2024 at 03:56PM Subway is investigating claims by the LockBit 3.0 ransomware gang that they’ve breached the company’s internal system and plan to sell the data unless a ransom is paid. This potential shift in LockBit’s targets raises concerns, as they typically focus on midsize or small companies. Experts recommend implementing robust cybersecurity … Read more