The Potential Impact of the OpenSSH Vulnerabilities CVE-2024–6387 and CVE-2024-6409

July 17, 2024 at 04:44AM The article “The Potential Impact of the OpenSSH Vulnerabilities CVE-2024–6387 and CVE-2024-6409” describes vulnerabilities in OpenSSH, namely “regreSSHion” and the signal handler race condition. It explains the technical details, exploitability in x64 systems, potential impact, and mitigation strategies. The vulnerabilities’ real-world impact is considered low due to the complexity of … Read more

GitLab Sends Users Scrambling Again With New CI/CD Pipeline Takeover Vuln

July 12, 2024 at 04:34PM GitLab recently disclosed a critical vulnerability, CVE-2024-6385, impacting its DevOps platform, allowing attackers to run pipelines within users’ contexts. With a severity rating of 9.6 on the CVSS scale, the bug affects GitLab versions 15.8 to 17.1. Users were strongly urged to upgrade as soon as possible. This follows a … Read more

ViperSoftX variant spotted abusing .NET runtime to disguise data theft

July 10, 2024 at 02:28AM The ViperSoftX malware, identified in 2020, has now evolved to use .NET CLR to obfuscate its PowerShell commands, concealing them in AutoIt-generated scripts. This sophisticated malware targets professionals by infiltrating pirated eBooks and aims to steal system information and cryptocurrency. Trellix’s report provides detection details for this new variant. Key … Read more

Identity Orchestration Is Gaining Traction

July 8, 2024 at 02:32PM Businesses in consumer financial services face challenges in managing identity information across different services, leading to a fragmented customer experience. Identity orchestration aims to integrate disparate identity systems to create a seamless online experience. It is increasingly important in industries such as financial services, retail, and hospitality, offering benefits like … Read more

Former Nuance Employee Arrested After Geisinger Data Breach Exposed 1.2 Million Records

July 8, 2024 at 09:57AM Geisinger, a Pennsylvania healthcare provider, is being sued for a data breach after a former Nuance employee accessed the personal information of 1.2 million individuals. The breached data included names, addresses, and medical record numbers, but no financial details. The former employee has been arrested, and a class action lawsuit … Read more

Dev rejects CVE severity, makes his GitHub repo read-only

June 30, 2024 at 10:43AM The ‘ip’ open-source project’s GitHub repository was archived by its developer, Fedor Indutny, due to dubious or bogus CVE reports being filed against it. The ‘node-ip’ GitHub repository was also made read-only, limiting interactions. Indutny disputed the severity of the CVE and raised concerns about the influx of unverified vulnerability … Read more

Dev makes his GitHub repo read-only after “dubious” CVE report

June 30, 2024 at 10:35AM The widely used ‘ip’ open-source project had its GitHub repository made “read-only” after developer Fedor Indutny received a dubious CVE report and experienced increased scrutiny due to a vulnerability in the ‘node-ip’ project, affecting JavaScript developers. This pattern of inflated CVE reports is causing frustration for developers and clouding the … Read more

Batten down the hatches, it’s time to patch some more MOVEit bugs

June 26, 2024 at 09:35AM Progress Software revealed new vulnerabilities affecting MOVEit Transfer and Gateway, including critical authentication bypass-style flaws with a severity score of 9.1. Last year’s breaches affected 2,773 organizations, prompting an embargo on the information until June 25 to allow for patching. The vulnerabilities could lead to file-less attacks and should be … Read more

Hackers Steal Over $2 Million in Cryptocurrency From CoinStats Wallets

June 25, 2024 at 08:48AM CoinStats, a cryptocurrency portfolio manager, was back online after hackers drained over $2 million from 1,590 hosted wallets. The platform assured that only 1.3% of CoinStats Wallets were affected. CoinStats requires read-only access to connected wallets, mitigating the risk to users’ funds. The CEO revealed the attack was likely orchestrated … Read more

Santander Employee Data Breach Linked to Snowflake Attack

June 21, 2024 at 09:21AM Santander US has reported a data breach impacting 12,000 employees’ personal information. The breach is linked to a Snowflake attack. Source: SecurityWeek. Based on the meeting notes, it appears that Santander US is notifying over 12,000 employees that their personal information was compromised in a data breach. The breach has … Read more