#PatchManagement

The Imperative for Modern Security: Risk-Based Vulnerability Management

by

February 29, 2024 at 07:57AM The news has been filled with reports of various vulnerabilities being exploited, highlighting the urgent need for organizations to modernize their vulnerability management practices. With the rise in cyber threats, organizations face resource constraints and challenges in patch management, making a risk-based approach essential for prioritizing and managing vulnerabilities effectively. … Read more

Black Basta, Bl00dy Ransomware Exploiting Recent ScreenConnect Flaws

by

February 27, 2024 at 11:27AM Multiple threat actors are exploiting two recently resolved vulnerabilities in ConnectWise ScreenConnect. The flaws, tracked as CVE-2024-1709 and CVE-2024-1708, allow for authentication bypass and path traversal. ConnectWise has released patches and urged immediate updates to version 23.9.8. Trend Micro has observed various cybercrime groups exploiting the vulnerabilities for malware delivery … Read more

ConnectWise urges ScreenConnect admins to patch critical RCE flaw

by

February 20, 2024 at 11:52AM ConnectWise issued a warning to immediately patch ScreenConnect servers due to high-severity flaws that can lead to remote code execution attacks. There is no evidence of exploitation, but urgency is stressed for on-premise partners. Huntress security researchers already created a bypass proof-of-concept exploit. CISA, NSA, and MS-ISAC have issued a … Read more

New Fortinet RCE flaw in SSL VPN likely exploited in attacks

by

February 8, 2024 at 06:14PM Fortinet warns of a critical remote code execution vulnerability (CVE-2024-21762/FG-IR-24-015) in FortiOS SSL VPN, with a 9.6 severity rating. Unpatched versions affected. Recommended upgrades provided. Those unable to patch can mitigate by disabling SSL VPN. Potential exploitation by threat actors. Urgent device updates advised due to high severity and possible … Read more

Patch Now: Critical TeamCity Bug Allows for Server Takeovers

by

February 7, 2024 at 01:33PM JetBrains has issued a security patch for a critical vulnerability in its TeamCity On-Premises server, which could be exploited by remote attackers to gain control over the server. This impacts all versions from 2017.1 to 2023.11.2. Users are urged to update to the patched version or install a security patch … Read more

Microsoft Azure HDInsight Bugs Expose Big Data to Breaches

by

February 6, 2024 at 09:04AM Three high-risk vulnerabilities have been found in Microsoft Azure’s HDInsight, impacting data security. The bugs open the door to performance issues and unauthorized access, allowing attackers to manipulate data and system operations. Azure’s HDInsight, used by major corporations, houses valuable information, emphasizing the need for diligent patching to protect sensitive … Read more

More Ivanti VPN Zero-Days Fuel Attack Frenzy as Patches Finally Roll

by

January 31, 2024 at 03:39PM Ivanti has patched the original set of zero-day vulnerabilities (CVE-2024-21887 and CVE-2023-46805) in its Connect Secure VPN appliances, but more fixes will be rolled out on a staggered schedule. The company is also addressing two new bugs (CVE-2024-21888 and CVE-2024-21893) with the latter under active exploitation. Organizations are urged to … Read more

CISA pushes federal agencies to patch Citrix RCE within a week

by

January 17, 2024 at 01:36PM CISA has directed U.S. federal agencies to secure their systems against recently patched Citrix NetScaler and Google Chrome zero-days. The urgency is due to active exploitation of the vulnerabilities. The agencies have specific timelines for patching, with the most critical CVE-2023-6548 vulnerability requiring resolution within a week. CISA urges all … Read more

VMware Urges Customers to Patch Critical Aria Automation Vulnerability 

by

January 16, 2024 at 09:12AM VMware has urged customers to patch a critical vulnerability (CVE-2023-34063, CVSS score of 9.9) affecting Aria Automation and Cloud Foundation. The missing access control flaw could allow unauthorized access to remote organizations and workflows. VMware has released patches for impacted versions and credited external researchers for discovering the vulnerability. Threat … Read more

Juniper Networks Patches Critical Remote Code Execution Flaw in Firewalls, Switches

by

January 15, 2024 at 06:12AM Juniper Networks has addressed more than 100 vulnerabilities, including the critical CVE-2024-21591 affecting Junos OS. The flaw could allow attackers to execute arbitrary code or cause a denial-of-service. Additionally, the company has patched high and medium severity flaws in third-party components. No known attacks exploiting these vulnerabilities have been reported. … Read more