vulnerabilities

Automatic Tank Gauges Used in Critical Infrastructure Plagued by Critical Vulnerabilities

by

September 24, 2024 at 02:24PM Cybersecurity warnings about vulnerabilities in automatic tank gauge (ATG) systems persist nearly a decade later, with critical security holes found in widely-deployed devices across various industries. Bitsight’s analysis revealed 10 vulnerabilities, with the potential for remote hacking leading to physical damage and financial theft. Despite their findings, the number of … Read more

Unpatched Vulnerabilities Expose Riello UPSs to Hacking: Security Firm

by

September 24, 2024 at 09:36AM Riello UPS devices are vulnerable to hackers due to unpatched vulnerabilities according to Austria-based firm CyberDanube. The vulnerabilities in the NetMan 204 network communications card enable attackers to take control of the UPS systems, posing a risk to devices directly exposed to the internet. Riello is yet to address these … Read more

CISA warns of actively exploited Apache HugeGraph-Server bug

by

September 19, 2024 at 06:57PM CISA added five flaws to its Known Exploited Vulnerabilities catalog, including a critical remote code execution (RCE) flaw in Apache HugeGraph-Server (CVE-2024-27348). It urges users to apply mitigations or discontinue use by October 9, 2024. The product is vital for various sectors and has older vulnerabilities added for documentation purposes. … Read more

CISA: Oracle Vulnerabilities From ‘Miracle Exploit’ Targeted in Attacks

by

September 19, 2024 at 11:06AM CISA added critical vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, including two Oracle flaws (CVE-2022-21445 and CVE-2020-14644). These can be exploited for remote code execution and system takeover. The flaws impact Oracle Fusion Middleware’s JDeveloper and WebLogic Server, and are linked to reported attacks on major organizations’ systems. Key … Read more

Atlassian Patches Vulnerabilities in Bamboo, Bitbucket, Confluence, Crowd

by

September 19, 2024 at 08:36AM Atlassian addressed multiple high-severity vulnerabilities in Bamboo, Bitbucket, Confluence, and Crowd with patches. The vulnerabilities allowed attackers to cause denial-of-service conditions. The patches address security defects in various components and dependencies, with the company urging users to update their installations as soon as possible. None of these issues have been … Read more

Vulnerabilities in Cellular Packet Cores Part IV: Authentication

by

September 18, 2024 at 06:47AM Microsoft Azure Private 5G Core (AP5GC) has two critical vulnerabilities. The first (CVE-2024-20685) can lead to potential service outages, while the second (ZDI-CAN-23960) can disrupt network operations. These exploits underscore systemic weaknesses, particularly the lack of mandatory authentication procedures between base stations and packet-cores, posing potential denial-of-service threats. From the … Read more

Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution

by

September 18, 2024 at 01:57AM Broadcom released updates to fix a critical security flaw in VMware vCenter Server, allowing possible remote code execution. Two similar flaws were also addressed, as well as a privilege escalation flaw. The flaws were discovered during a cybersecurity competition in June 2024 and have been fixed in various versions. Customers … Read more

Recent WhatsUp Gold Vulnerabilities Possibly Exploited in Ransomware Attacks

by

September 17, 2024 at 06:03AM Two critical vulnerabilities in Progress Software’s WhatsUp Gold were recently exploited in possible ransomware attacks. Trend Micro observed remote code execution attempts following the public disclosure of the flaws and suspects a ransomware group’s involvement due to the use of multiple remote access tools. CISA has added one of the … Read more

New Linux Malware Campaign Exploits Oracle Weblogic to Mine Cryptocurrency

by

September 13, 2024 at 02:30AM Cybersecurity researchers have discovered a new malware campaign targeting Linux environments to illicitly mine cryptocurrency, focusing on the Oracle Weblogic server. The malware, named Hadooken, deploys a crypto miner and a DDoS botnet, exploiting vulnerabilities and misconfigurations to spread across connected environments. The campaign is linked to hosting companies in … Read more

Hackers targeting WhatsUp Gold with public exploit since August

by

September 12, 2024 at 12:43PM Hackers are utilizing publicly available exploit code to target two critical vulnerabilities in the WhatsUp Gold network monitoring solution from Progress Software. Based on the meeting notes, it appears that hackers have been exploiting two critical vulnerabilities in the WhatsUp Gold network availability and performance monitoring solution from Progress Software … Read more