October 29, 2024 at 03:17PM Over 22,000 CyberPanel instances faced a critical vulnerability exploited in a PSAUX ransomware attack, taking most offline. Security flaws in versions 2.3.6 and possibly 2.3.7 were identified, including defective authentication and command injection. Users are urged to upgrade immediately to mitigate risks and access potential decryption aid. ### Meeting Takeaways: … Read more
October 24, 2024 at 04:46AM On day 2 of Pwn2Own Ireland 2024, over $350,000 was awarded, including $50,000 for an exploit targeting the Samsung Galaxy S24. **Meeting Takeaways:** 1. **Financial Overview**: A total of over $350,000 was awarded on Day 2 of Pwn2Own Ireland 2024. 2. **Significant Exploit**: An exploit targeting the Samsung Galaxy S24 … Read more
October 23, 2024 at 03:35PM A deserialization vulnerability in Microsoft SharePoint, CVE-2024-38094, is actively exploited, allowing attackers to inject code remotely. CISA added it to its catalog, urging timely remediation for all organizations. Microsoft previously patched the issue, emphasizing the need for swift action, especially for federal agencies by November 12. ### Meeting Takeaways 1. … Read more
October 23, 2024 at 11:07AM Fortinet disclosed a critical API vulnerability, CVE-2024-47575, in FortiManager, exploited in zero-day attacks to steal sensitive data. The company privately alerted customers on October 13, but details leaked online. The flaw, affecting multiple versions, allows unauthorized command execution, posing risks for corporate networks. Mitigations and patches are available. ### Meeting … Read more
October 18, 2024 at 08:55AM Microsoft reports that the Adload macOS adware may exploit a privacy bypass vulnerability that was recently fixed in Sequoia 15. This highlights ongoing security concerns related to adware attacks on macOS platforms. **Meeting Takeaways:** 1. **Adware Concern:** The Adload macOS adware is potentially exploiting a vulnerability related to privacy bypass. … Read more
October 16, 2024 at 12:59PM A critical Kubernetes vulnerability, CVE-2024-9486, permits unauthorized SSH access to VM images built with the Image Builder project (version 0.1.37 or earlier) due to default credentials. Users are advised to upgrade to version 0.1.38 or temporarily disable the builder account. Similar issues exist for other providers, tracked as CVE-2024-9594. ### … Read more
October 14, 2024 at 03:37PM Jetpack, a popular WordPress plugin, released a critical update to fix a vulnerability allowing logged-in users to access submitted forms from other visitors. The flaw affects all versions since 3.9.9, with fixes available for 101 versions. Users are urged to upgrade immediately, though no exploitation evidence has been found. ### … Read more
October 10, 2024 at 08:46AM Cybersecurity researchers have identified an unpatched vulnerability (CVE-2024-9441) in Nice Linear eMerge E3 access controllers, allowing remote command execution. It has a CVSS score of 9.8. The vendor has not yet provided a fix. Experts advise isolating affected devices and implementing security measures to mitigate risks. ### Meeting Takeaways – … Read more
October 8, 2024 at 02:18PM The text lists numerous CVE IDs and their associated vulnerabilities, including remote code execution, denial of service, elevation of privilege, and information disclosure. These vulnerabilities impact various Microsoft products such as .NET, Visual Studio, Azure, Windows, and Office, among others. The severity ranges from critical to moderate. Based on the … Read more
October 8, 2024 at 01:15PM Ivanti has warned about three new security vulnerabilities in its Cloud Service Appliance (CSA) actively exploited in the wild. The zero-day flaws, when combined with a previously patched flaw, can allow attackers to bypass restrictions, run arbitrary SQL statements, or obtain remote code execution. The company advises taking measures to … Read more