June 6, 2024 at 05:31PM Chinese threat actors are targeting vulnerable ThinkPHP applications, exploiting old flaws CVE-2018-20062 and CVE-2019-9082 to install a persistent web shell named Dama. The web shell allows further exploitation of breached endpoints, giving the attackers remote control, network scanning, and database access. Organizations are advised to update to ThinkPHP version 8.0 … Read more
June 6, 2024 at 04:36PM A recent spike in exploit activity is targeting a critical flaw (CVE-2024-24919) in Check Point’s VPN technology. Attack attempts began in April, with a major increase after a public proof-of-concept was released. Over 13,000 exposed systems are at risk, prompting urgent patching. The US government has issued a deadline for … Read more
June 4, 2024 at 10:53AM NIST has faced a significant backlog in processing vulnerability reports, with only 26% being processed this year due to increasing workload and resource reductions. The agency has announced a plan to address the issue, including partnering with CISA and implementing process updates to enhance efficiency. Industry professionals express concerns and … Read more
June 3, 2024 at 05:53PM NIST extended its contract with Analygence to address the growing backlog in its National Vulnerability Database. The backlog has been increasing since February, with 93% of vulnerabilities submitted remaining unanalyzed. NIST aims to clear the backlog and process current vulnerabilities by the end of the fiscal year. The agency is … Read more
May 22, 2024 at 07:42AM IT software company Ivanti released patches for several products, including critical vulnerabilities in Endpoint Manager (EPM). The fixes addressed SQL injection bugs and unrestricted file upload issues. Ivanti urged customers to update to the latest versions to apply the fixes. The company also reaffirmed its commitment to enhancing security practices. … Read more
May 15, 2024 at 11:21AM Intel released 41 security advisories addressing over 90 vulnerabilities in its products. Critical vulnerability CVE-2024-22476 was found in Neural Compressor, allowing unauthenticated remote attackers to escalate privileges. High-severity flaws were also found in UEFI firmware, graphics, and network products. Additionally, there were medium-severity vulnerabilities in various hardware and software products. … Read more
May 14, 2024 at 03:43PM Microsoft released security updates addressing 60 vulnerabilities, including an actively exploited zero-day bug called CVE-2024-30051 with a severity score of 7.8/10. They also warned of CVE-2024-30040 allowing attackers to execute code in Microsoft 365, and CVE-2024-30044 for remote code execution in Microsoft Sharepoint, urging admins to take immediate action. From … Read more
May 14, 2024 at 05:44AM Chris Cheyne, SOC Director at SecurityHQ, compares defending against cyber threats to protecting a medieval castle. Identifying weaknesses in defenses and understanding the potential impact on business assets is crucial. He emphasizes the importance of quantifying cyber risks, understanding the adversary, and adopting a data-driven strategy to address cybersecurity challenges … Read more
May 14, 2024 at 04:11AM Google has released emergency security updates for its Chrome browser, addressing a high-severity zero-day vulnerability exploited in attacks. This comes after fixing another zero-day vulnerability just three days earlier. The latest bug, CVE-2024-4761, affects Chrome’s V8 JavaScript engine and allows out-of-bounds write issues, the sixth zero-day bug fixed in 2024. … Read more
May 10, 2024 at 02:28PM At the 2024 RSA Conference, tech giants like Microsoft, Amazon Web Service, IBM, and Fortinet have voluntarily agreed to meet a set of seven cyber security objectives outlined by the US’s cyber authority, CISA. The initiative lacks legal enforcement but aims to foster good security practices and investments across industries, … Read more