#networksecurity

Many Legacy D-Link NAS Devices Exposed to Remote Attacks via Critical Flaw

by

November 11, 2024 at 06:10AM D-Link has alerted users about a critical command injection vulnerability in several discontinued NAS models, leaving them exposed to remote attacks. This emphasizes the importance of maintaining security awareness for legacy devices. **Meeting Takeaways:** 1. **Vulnerability Alert**: D-Link has identified a critical-severity command injection vulnerability. 2. **Affected Products**: The issue … Read more

HPE Issues Critical Security Patches for Aruba Access Point Vulnerabilities

by

November 11, 2024 at 05:39AM Hewlett Packard Enterprise (HPE) released security updates for Aruba Networking Access Point products, addressing critical command injection vulnerabilities (CVE-2024-42509, CVE-2024-47460) that allow unauthenticated remote code execution. Users are advised to enable cluster security or block access to UDP port 8211 and implement management access controls to mitigate risks. **Meeting Takeaways: … Read more

Palo Alto Networks Addresses Remote Code Execution Vulnerability Claims

by

November 11, 2024 at 05:00AM SecurityWeek offers comprehensive cybersecurity news, resources, and events, including webcasts and conferences. Key topics covered include malware, cybercrime, ransomware, vulnerabilities, and risk management. Subscribers can receive daily briefings for updates on the latest threats and insights in the cybersecurity landscape. Unsubscription is available anytime. ### Meeting Takeaways 1. **Focus Areas:** … Read more

Palo Alto Advises Securing PAN-OS Interface Amid Potential RCE Threat Concerns

by

November 9, 2024 at 02:12AM Palo Alto Networks issued an advisory addressing a potential remote code execution vulnerability in the PAN-OS management interface. Users are urged to secure access and follow best practices to mitigate risks. Additionally, a critical flaw (CVE-2024-5910) in the Expedition tool has been added to CISA’s KEV catalog, with active exploits … Read more

D-Link won’t fix critical flaw affecting 60,000 older NAS devices

by

November 8, 2024 at 02:23PM Over 60,000 D-Link NAS devices are vulnerable to a critical command injection flaw (CVE-2024-10914). An attacker can exploit it via crafted HTTP GET requests. D-Link confirmed no fix will be provided and recommends retiring the affected devices or isolating them from the internet due to their end-of-life status. ### Meeting … Read more

In Other News: China Hacked Singtel, GuLoader Attacks on Industrial Firms, Phone Use Warning in US Agency

by

November 8, 2024 at 01:02PM SecurityWeek offers extensive cybersecurity news, covering topics like malware, cyberwarfare, and ransomware. The platform hosts webcasts and virtual events, including the ICS Cybersecurity Conference. Subscribers can receive daily briefings for updates on threats and expert insights, with options to unsubscribe at any time. **Meeting Takeaways: SecurityWeek Overview** 1. **Cybersecurity News … Read more

Palo Alto Networks warns of potential PAN-OS RCE vulnerability

by

November 8, 2024 at 12:46PM Palo Alto Networks warned customers about a potential remote code execution vulnerability in the PAN-OS management interface. While no active exploitation has been detected, the company advises restricting access and following best practices. Additionally, CISA highlighted ongoing attacks exploiting another critical vulnerability, urging federal agencies to secure their systems promptly. … Read more

HPE Patches Critical Vulnerabilities in Aruba Access Points

by

November 8, 2024 at 06:49AM HPE has issued a warning about two critical vulnerabilities in Aruba Networking access points, which could allow for unauthenticated command injection. The company has since released patches to address these security issues. **Meeting Takeaways:** 1. **Company Alert**: HPE has issued a warning regarding two critical vulnerabilities identified in Aruba Networking … Read more

Breaking Down Earth Estries’ Persistent TTPs in Prolonged Cyber Operations

by

November 8, 2024 at 04:49AM Earth Estries utilizes two distinct attack chains, exploiting vulnerabilities especially in Microsoft Exchange servers. The first chain employs CAB-delivered tools like PsExec and Cobalt Strike for lateral movement. The second chain uses web shells and backdoors like Zingdoor for data exfiltration. Continuous updates confirm their persistent threat. ### Meeting Takeaways … Read more

CISA Alerts to Active Exploitation of Critical Palo Alto Networks Vulnerability

by

November 8, 2024 at 12:51AM The U.S. CISA added a critical vulnerability in Palo Alto Networks Expedition (CVE-2024-5910) to its KEV catalog, allowing admin account takeovers. Affected versions are before 1.2.92. Two other flaws were noted, including a severe one in CyberPanel linked to PSAUX ransomware, urging federal agencies to remediate by November 28, 2024. … Read more