December 11, 2023 at 10:06AM Two years after the Log4Shell vulnerability disclosure, around 1 in 4 applications still rely on outdated Log4j libraries, making them susceptible to exploitation. While some developers promptly updated the libraries, a significant proportion remain vulnerable. Urgent action was effective, but there’s still a need for more rigorous open source security … Read more
December 8, 2023 at 10:18AM WordPress 6.4.2 addresses a vulnerability that, when combined with another flaw, could lead to the execution of arbitrary code. The update aims to mitigate the risk of remote code execution. (43 words) Based on the meeting notes, the key takeaway is that WordPress version 6.4.2 has addressed a vulnerability that … Read more
November 28, 2023 at 11:16AM Hackers are actively exploiting a critical vulnerability in the ownCloud file synchronization software that could lead to data breaches. The flaw, tracked as CVE-2023-49103, allows attackers to access sensitive information such as admin passwords, mail server credentials, and license keys. The vulnerability affects both containerized and non-containerized deployments, and administrators … Read more
November 28, 2023 at 10:00AM Threat actors are actively exploiting a critical information disclosure vulnerability in ownCloud’s Graphapi app. The vulnerability allows attackers to retrieve sensitive credentials and system information. The flaw affects Graphapi versions 0.2.0 to 0.3.0 and cannot be mitigated by disabling the app alone. Administrators are urged to follow the mitigation steps … Read more
November 23, 2023 at 10:48AM Private 5G networks are at risk due to a vulnerability in the GPRS Tunneling Protocol User Plane (GTP-U). The lack of encryption and authentication mechanisms in this critical link allows attackers to breach private 5G networks through packet reflection. To mitigate this risk, organizations should implement robust security protocols, firewalls, … Read more
November 22, 2023 at 05:00PM The Lumma information-stealer malware, also known as LummaC2, claims to have a new feature that can restore expired Google cookies, allowing cybercriminals to hijack Google accounts. The feature is only available to subscribers of the highest-tier plan, costing $1,000/month. While this capability has not been verified by security researchers or … Read more
November 22, 2023 at 09:06AM AutoZone, the car parts retailer, has informed nearly 185,000 individuals that their personal information was compromised in the MOVEit hacking campaign. Cybercriminals exploited a vulnerability in the MOVEit Transfer application to steal information, including social security numbers. AutoZone has temporarily disabled the application, patched the vulnerability, and rebuilt the affected … Read more
November 22, 2023 at 07:12AM Authorities in Australia, the US, and tech company Citrix have issued warnings about a critical vulnerability in the NetScaler product. Dubbed CitrixBleed, the bug allows information disclosure and affects Netscaler ADC and Gateway appliances configured as a gateway or AAA server. The flaw, which has been exploited since August and … Read more
November 21, 2023 at 05:39PM AutoZone’s CISO, Doug Baldwin, reported a data breach to the state of Maine affecting 184,995 individuals, with 293 residents affected. The breach, discovered this month but occurring on May 28, involved a threat actor exploiting a vulnerability in the MOVEit application. AutoZone has disabled the application, conducted an investigation, and … Read more
November 21, 2023 at 11:41AM Admins who have patched their NetScaler appliances against the Citrix Bleed vulnerability must take additional measures to secure their devices. Citrix advises wiping all previous user sessions and terminating active ones to prevent attackers from accessing compromised devices. The flaw has been actively exploited since late August, and compromised sessions … Read more