September 12, 2024 at 07:39AM Microsoft warned users of a Windows Installer flaw, CVE-2024-38014, allowing for SYSTEM-level privilege escalation via an .msi file, exploited in the wild. Security firm SEC Consult disclosed the flaw and released msiscan, an open source tool to detect vulnerable files. Microsoft patched the vulnerability in its latest Patch Tuesday update … Read more
September 5, 2024 at 03:49PM The US charged five Russian military intelligence officers and one civilian for involvement in the WhisperGate cyberattack against Ukraine, offering a $10 million bounty for their whereabouts. The cyberattack, conducted by Russian GRU officers, targeted Ukrainian government computers and non-military agencies. The US and international partners issued a joint cybersecurity … Read more
August 30, 2024 at 07:58PM RansomHub, a rising ransomware group, has amassed over 210 victims since its emergence in February. Its affiliates target a broad range of sectors, using tactics like vulnerability exploits and specific tools for data exfiltration. The advisory suggests mitigation measures and emphasizes the importance of secure software design. RansomHub faces strong … Read more
August 28, 2024 at 01:04AM Malicious actors are exploiting the critical vulnerability CVE-2023-22527 to conduct cryptojacking attacks, leveraging methods such as shell scripts, XMRig miners, and targeting SSH endpoints. Atlassian has released a security advisory, recommending organizations to update their Confluence instances and implement security tools for defense. Regular patch management, network segmentation, security audits, … Read more
August 26, 2024 at 12:16PM Versa Networks resolved a zero-day vulnerability through a security update after detecting its exploitation. The flaw impacted the Versa Director platform and could be leveraged by threat actors to upload corrupted files. The company urged affected customers to enhance system security and update their installations to protect against potential attacks. … Read more
August 26, 2024 at 04:00AM Two security vulnerabilities in the Traccar GPS tracking system, CVE-2024-24809 and CVE-2024-31214, allow unauthenticated attackers to achieve remote code execution if guest registration is enabled. The issues have been addressed in Traccar 6, released in April 2024, which turns off self-registration by default. Attack methods and system-specific exploitation details are … Read more
August 22, 2024 at 02:00AM Google has released security fixes for a high-severity vulnerability (CVE-2024-7971) in its Chrome browser, actively exploited in the wild. It’s a type confusion bug in the V8 engine. The flaw was discovered by Microsoft Threat Intelligence Center and Microsoft Security Response Center. Users are urged to update to Chrome version … Read more
August 15, 2024 at 09:21AM SolarWinds has released a hotfix for a critical-severity vulnerability in Web Help Desk, allowing remote attackers to execute arbitrary code. The CVE-2024-28986 affects versions 12.4 to 12.8, requiring the installation of version 12.8.3.1813. SolarWinds advises customers to upgrade, download the hotfix, and apply it, providing detailed installation instructions in their … Read more
August 13, 2024 at 04:34PM Ivanti has addressed a critical vulnerability in its Virtual Traffic Manager (vTM) related to an authentication algorithm, with a major potential impact. While no attacks have been observed, a proof-of-concept exploit is publicly available. Ivanti has provided patches and recommends limiting vTM access to trusted IP addresses to reduce the … Read more
August 8, 2024 at 09:49AM 1Password for Mac versions prior to 8.10.36 are susceptible to a bug allowing attackers to steal vault items. 1Password Vaults securely manage passwords for various accounts, with the ability to be shared. Around 150,000 businesses and numerous individual consumers rely on 1Password. To address the vulnerability, users must update to … Read more