June 13, 2024 at 04:00AM Google has warned of a zero-day security flaw, CVE-2024-32896, in Pixel Firmware, being exploited in targeted attacks. The June 2024 security update addresses a total of 50 vulnerabilities, including denial-of-service issues and information disclosure flaws in Qualcomm chipsets. Updates are available for supported Pixel devices. Previous security flaws have also … Read more
June 11, 2024 at 07:13PM The critical CVE-2024-30080 is the highlight of Microsoft’s June 2024 Patch Tuesday update, but several other issues also need immediate attention. Based on the meeting notes, the key takeaway would be that CVE-2024-30080 is the critical issue in Microsoft’s June 2024 Patch Tuesday update, but there are also many other … Read more
June 10, 2024 at 06:56PM Arm has issued a security bulletin regarding a memory-related vulnerability in Bifrost and Valhall GPU kernel drivers, known as CVE-2024-4610, impacting versions r34p0 through r40p0. This use-after-free vulnerability (UAF) poses a risk of information disclosure and arbitrary code execution. The issue has been fixed in version r41p0, with users urged … Read more
June 7, 2024 at 02:23PM SolarWinds released version 2024.2 with new features, upgrades, and security patches. This includes fixing high-severity SWQL injection bug (CVE-2024-28996), reported by a NATO-affiliated penetration tester. Other flaws fixed are a high-severity cross-site scripting flaw (CVE-2024-29004) and a medium-severity race condition vulnerability. The update also enhances map functionality and overall stability. … Read more
June 6, 2024 at 08:07AM Microsoft has officially deprecated the NTLM authentication protocol, signaling the need for admins to transition to more secure alternatives. While NTLM will continue to work in future Windows releases, calls to NTLM should be replaced by Negotiate, prioritizing Kerberos authentication. The move is part of Microsoft’s goal to eliminate the … Read more
June 5, 2024 at 05:06AM Northern Minerals, an Australian rare-earth metals producer, fell victim to a data breach by the BianLian ransomware gang. Exfiltrated data, including operational, financial, and personal information, was released on the dark web. Despite the breach, the company’s operations and systems were not materially impacted. The incident coincided with political developments, … Read more
May 29, 2024 at 09:34AM Check Point releases hotfixes for VPN zero-day exploited in attacks targeting remote access to firewalls and corporate networks. The vulnerability (CVE-2024-24919) affects Check Point Security Gateways and impacts various product versions. Security updates have been issued, and installation instructions provided. A remote access validation script is available to review results … Read more
May 22, 2024 at 09:03AM Veeam released a Backup & Replication update addressing four vulnerabilities, including a critical Backup Enterprise Manager bug allowing unauthenticated access. The update also resolves high-severity issues related to NTLM relay attacks and stealing NTLM hash. Users are advised to update installations due to potential exploitation by threat actors. Based on … Read more
May 21, 2024 at 11:07AM GitHub has patched a critical authentication bypass vulnerability (CVE-2024-4986) in GitHub Enterprise Server (GHES) instances using SAML single sign-on (SSO), allowing attackers to gain admin privileges and unrestricted access to instance contents. The flaw only affects instances using SAML SSO with encrypted assertions. The fixed versions, released on May 20, … Read more
May 16, 2024 at 10:31AM The new KB5037765 security update for Windows Server 2019 is failing to install due to a known issue, resulting in 0x800f0982 errors. This problem is more likely to affect devices without en_us language pack support. While Microsoft works on a fix, an unofficial workaround involves installing the en-US language pack. … Read more