August 26, 2024 at 03:20PM The FBI was found to have serious flaws in its handling and disposal of seized electronic storage media. The lack of labeling and tight security measures posed risks of loss or theft of sensitive information. While the FBI is taking steps to address the issue, concerns remain over inventory control … Read more
August 26, 2024 at 02:35PM The Port of Seattle, operating Seattle-Tacoma International Airport, is investigating a “possible cyberattack” causing computer outages and flight delays. The disruption led to long lines, manual ticketing, and terminal screen issues. The website remains offline as authorities work with federal partners to investigate. The attack coincides with a rise in … Read more
August 21, 2024 at 12:54PM GitHub has issued a critical fix for security vulnerabilities found in its Enterprise Server product. One flaw, CVE-2024-6800, allows attackers to manipulate SAML SSO authentication to gain site administrator privileges, with a severity score of 9.5/10. The vulnerabilities affect versions prior to 3.14 and were fixed in subsequent releases. Two … Read more
August 21, 2024 at 11:20AM Tenable researchers discovered a server-side request forgery (SSRF) vulnerability in Microsoft’s Copilot Studio tool, allowing attackers to access sensitive cloud-based information. This flaw, tracked as CVE-2024-38206, could impact multiple tenants by bypassing SSRF protection. However, Microsoft has fully mitigated the vulnerability, ensuring no action is required from Copilot Studio users. … Read more
August 21, 2024 at 08:54AM Miggo has identified a critical configuration issue in AWS’s Application Load Balancer, potentially impacting 15,000 vulnerable apps. Referred to as ALBeast, the attack involves forging tokens and exploiting the ALB configuration to bypass authentication and authorization. Businesses are advised to validate token signers and restrict traffic to mitigate these threats. … Read more
August 20, 2024 at 09:22PM Microchip Technology disclosed an unauthorized party disrupting its server use and business operations, impacting manufacturing facilities and order fulfillment. Actions were taken to contain the incident, with external cybersecurity advisors involved. The cause and extent of the disruption remain undisclosed, raising concerns given the company’s critical role in supplying chips … Read more
August 20, 2024 at 11:06AM A critical vulnerability in the GiveWP WordPress plugin (CVE-2024-5932, CVSS score 10/10) exposed over 100,000 websites, allowing unauthenticated attackers to execute arbitrary remote code or delete files. Exploiting a bug in serialization, attackers could potentially take over affected sites, which has been addressed in version 3.14.2 and users are urged … Read more
August 16, 2024 at 05:51PM GitHub Actions artifacts generated during CI/CD workflows may inadvertently expose tokens for third-party cloud services and GitHub, posing a risk to repositories and services. Palo Alto Networks warns of misconfigurations and security defects allowing threat actors to compromise repositories and steal secrets. Avital suggests proactive security measures to mitigate these … Read more
August 15, 2024 at 05:09AM Hackers recently breached Columbus, Ohio, claiming to have stolen 6.5 terabytes of data, including sensitive information like log-in details and city camera access. However, Mayor Andrew Ginther confirmed most data was corrupted or encrypted and not put up for auction. The city is now focused on increasing digital security to … Read more
August 15, 2024 at 03:21AM A new attack vector named ArtiPACKED exploits GitHub Actions artifacts, potentially compromising repositories and cloud environments. Palo Alto Networks Unit 42 researchers revealed how misconfigurations and security flaws could lead to the leakage of tokens, opening opportunities for malicious actors to compromise services and push rogue code to production. Vulnerable … Read more