#ZeroDayAttacks

10 nasty bugs put thousands of fuel storage tanks at risk of attacks

September 24, 2024 by Xynik

September 24, 2024 at 11:36AM Infosec researchers disclosed 10 critical CVEs affecting Automatic Tank Gauge systems from various vendors, including Dover Fueling Solutions, OPW Fuel Management Systems, Franklin Fueling Systems, and OMNTEC. These vulnerabilities could allow full administrator privileges, potentially leading to physical and environmental damage. Despite efforts to work with vendors, some vulnerable devices … Read more

Zero-Day Attacks and Supply Chain Compromises Surge, MFA Remains Underutilized: Rapid7 Report

May 23, 2024 by Xynik

May 23, 2024 at 07:22AM Zero-day attacks and supply chain mass compromise events are on the rise, with inadequate use of MFA, according to Rapid7’s 2024 Attack Intelligence Report. The report highlights a growing number of zero-day exploits and mass compromise events, driven by growing sophistication of cybercriminals and potential non-disclosure of vulnerabilities by vendors. … Read more

Apple backports fix for RTKit iOS zero-day to older iPhones

May 13, 2024 by Xynik

May 13, 2024 at 05:50PM Apple has backported security patches to older iPhones and iPads, fixing an iOS Kernel zero-day vulnerability actively exploited in attacks. The flaw allows attackers to bypass memory protections. The company also addressed two other zero-day vulnerabilities and added support for unwanted tracking alerts in the latest iOS update. From the … Read more

runZero Research Explores Unexpected Exposures in Enterprise Infrastructure

May 8, 2024 by Xynik

May 8, 2024 at 05:26PM runZero unveiled the inaugural runZero Research Report at the RSA Conference, highlighting alarming trends in enterprise asset security. Key findings include the convergence of IT and OT, limited visibility into network devices, and risks associated with end-of-life hardware and operating systems. The report emphasizes the significance of asset discovery for … Read more

Thousands of Ivanti VPN Appliances Impacted by Recent Vulnerability

April 8, 2024 by Xynik

April 8, 2024 at 10:54AM Researchers at the Shadowserver Foundation discovered thousands of internet-exposed Ivanti VPN appliances vulnerable to a recently disclosed CVE-2024-21894, enabling remote code execution. Ivanti released updates for this and other vulnerabilities, urging users to update instances. ShadowServer found over 16,000 affected Ivanti VPN instances, mostly in the US and Japan, with … Read more

Ivanti CEO Vows Cybersecurity Makeover After Zero-Day Blitz

April 4, 2024 by Xynik

April 4, 2024 at 03:30PM Utah IT software firm Ivanti responded to zero-day attacks with a CEO-led media campaign vowing to revamp its cybersecurity organization, acknowledged its security issues, and promised significant investment in secure-by-design principles. After delays in releasing patches for high-severity vulnerabilities, the US government ordered disconnection of Ivanti products. The CEO outlined … Read more

Google Report: Despite Surge in Zero-Day Attacks, Exploit Mitigations Are Working

March 27, 2024 by Xynik

March 27, 2024 at 10:54AM A Google report on zero-day attacks in 2023 shows a decline in use-after-free and JavaScript engine exploitation. Exploit mitigations in operating systems and software are impacting attackers, prompting the search for new vulnerabilities. The focus has shifted to targeting third-party components and enterprise technologies. Investments in security are forcing attackers … Read more

Ivanti Connect Secure zero-days now under mass exploitation

January 15, 2024 by Xynik

January 15, 2024 at 08:07PM Volexity discovered mass exploitation of two zero-day vulnerabilities affecting Ivanti’s Connect Secure VPN and Policy Secure NAC appliances. The attacks by multiple threat groups have targeted organizations worldwide, including Fortune 500 companies and government departments. Mitigation measures and a list of malicious tools used in the attacks have been provided. … Read more