eSecurity Planet

SEPTEMBER 18, 2023

This week, the following active exploits of vulnerabilities were announced: Iranian advanced persistent threat (APT) group exploits January 2023 vulnerabilities in Fortinet firewalls and ManageEngine software to perform remote code execution (RCE) on U.S. Read More: The 8 Best Vulnerability Scanner Tools for 2023 What is Patch Management?

Firewall 95

Firewall Security Defenses Risk Cybersecurity 95

eSecurity Planet

NOVEMBER 6, 2023

30, 2023 NGINX Ingress Controller for Kubernetes Flaws Can Lead to Credential Theft Type of Attack: Path sanitization bypass and injection vulnerabilities discovered in the NGINX Ingress controller can allow for credential theft, arbitrary command execution, and critical data access. CVE-2023-5044 (Code Injection): This CVSS score 7.6

Software 91

Software Education Ransomware Firmware 91

eSecurity Planet

AUGUST 28, 2023

We’ve compiled some recently active vulnerabilities — both old and new — for security teams to monitor, mitigate, patch, or even remove from your infrastructure altogether. August 21, 2023 Ivanti finds another vulnerability For the third time in a month, Ivanti’s has reported a vulnerability in a mobile device management platform.

VPN 87

VPN Authentication Mobile Firewall 87

eSecurity Planet

AUGUST 14, 2023

Here’s a roundup of the week’s major vulnerabilities that security teams should mitigate or patch. August 12 , 2023 Ford Auto’s TI Wi-Fi Vulnerability The Internet of Things (IoT) continues to expand and become a threat to connected businesses. Adobe also updated their Commerce and Dimension software.

Software 87

Software Malware Internet Internet 87

eSecurity Planet

AUGUST 28, 2023

We’ve compiled some recently active vulnerabilities — both old and new — for security teams to monitor, mitigate, patch, or even remove from your infrastructure altogether. August 21, 2023 Ivanti finds another vulnerability For the third time in a month, Ivanti’s has reported a vulnerability in a mobile device management platform.

VPN 70

VPN Authentication Mobile Firewall 70

Spinone

JANUARY 17, 2023

It quietly makes its way past your security defenses into the heart of your data and keeps it hostage until you pay a ransom. Learn the key ransomware attack vectors in the […] The post 5 Main Ransomware Attack Vectors in 2023 first appeared on SpinOne.

Ransomware 40

Ransomware Security Defenses 40

Spinone

DECEMBER 17, 2019

It quietly makes its way past your security defenses into the heart of your data and keeps it hostage until you pay a ransom. Learn the key ransomware attack vectors in the […] The post 5 Main Ransomware Attack Vectors in 2023 first appeared on SpinOne.

Ransomware 40

Ransomware Security Defenses 40

eSecurity Planet

SEPTEMBER 13, 2023

Microsoft’s Patch Tuesday for September 2023 includes 59 vulnerabilities, five of them rated critical and two currently being exploited in the wild. The two vulnerabilities currently being exploited are CVE-2023-36761 , an information disclosure flaw in Microsoft Word with a CVSS score of 6.2;

Engineering 105

Engineering Security Defenses Risk Cybersecurity 105

eSecurity Planet

JANUARY 8, 2024

and older of the Perl Spreadsheet::ParseExcel library ( CVE-2023-7101 ) contain a RCE vulnerability exploited by Chinese hackers, as noted on December 24th. Chrome web browsers experience heap buffer overflow ( CVE-2023-7024 ) in the WebRTC real-time communication coding that can crash chrome or allow for code execution. Versions 0.65

Encryption 106

Encryption Security Defenses Cybersecurity Internet 106

eSecurity Planet

APRIL 29, 2024

An old Microsoft Windows spooler flaw is added to the CISA KEV list, and the Cactus Ransomware gang currently pursues unfixed Qlik Sense servers with a vulnerability patched in September 2023. Only after additional testing in May 2023 did Brocade accept the vulnerabilities existed, but did not issue patches until December 2023.

Firewall 93

Firewall Software Ransomware Penetration Testing 93

eSecurity Planet

AUGUST 9, 2023

Microsoft’s Patch Tuesday for August 2023 addresses 74 vulnerabilities, six of them critical. The six critical vulnerabilities discussed in the release note are as follows: CVE-2023-29328 and CVE-2023-29330 , a pair of remote code execution flaws in Microsoft Teams with a CVSS score of 8.8 exe and hvciscan_arm64.exe),

VPN 90

VPN Security Defenses Cybersecurity Engineering 90

eSecurity Planet

JANUARY 2, 2024

Google announced an update to the desktop stable channel to 120.0.6099.129 on December 20, 2023, which was expected to roll out over the coming days and weeks. The fix: Barracuda deployed a patch on December 22, 2023, to fix the exploited ESG appliances. The fix: Access to fix data is currently limited.

Authentication 90

Authentication Software Engineering Security Defenses 90

eSecurity Planet

AUGUST 10, 2023

Read next: Network Protection: How to Secure a Network Get the Free Cybersecurity Newsletter Strengthen your organization's IT security defenses by keeping up to date on the latest cybersecurity news, solutions, and best practices. You can unsubscribe at any time.

Internet 72

Internet Internet Cybersecurity Malware 72

eSecurity Planet

FEBRUARY 5, 2024

The Known Exploited Vulnerabilities list also added the previously disclosed issues CVE-2023-36846 and CVE-2023-36851 , emphasizing the importance of immediate fix. The fix: Microsoft already issued a fix in October 2023 to address this vulnerability. Both affect J-Web and all Junos OS versions. This gets a severity score of 7.3

Risk 95

Risk Penetration Testing Authentication Software 95

eSecurity Planet

FEBRUARY 12, 2024

This code exists in all software that uses Secure Boot, like SUSE, Red Hat, and Debian. The RCE vulnerability is tracked as CVE-2023-40547 and has a severity rating of 8.3. Orca Security published a blog post about the vulnerabilities — its researchers discovered and reported the issues in Fall 2023, and Microsoft quickly patched them.

VPN 104

VPN Authentication Software Firewall 104

eSecurity Planet

APRIL 15, 2024

CVE-2023-6317 allows for the bypass of permission procedures, enabling unauthorized users to be added. CVE-2023-6318 permits privilege escalation to get root access. CVE-2023-6319 enables the execution of arbitrary commands via music lyrics display.

Firewall 99

Firewall VPN Software Risk 99

eSecurity Planet

JANUARY 29, 2024

The problem: Mandiant revealed possible 2021 exploitation by Chinese espionage attackers for CVE-2023-34048, an out-of-bounds weakness in protocol implementation first publicly reported in October 2023. The fix: Deploy the Apache security upgrades available since November 2023.

Software 88

Software Authentication CSO Accountability 88

eSecurity Planet

JANUARY 22, 2024

CVE-2023-6548 is a remote code execution vulnerability for an authenticated user, and CVE-2023-6549 is a denial-of-service vulnerability. To exploit CVE-2023-6548, an attacker must have access to NSIP, CLIP, or SNIP and also have management interface access. There’s evidence that it’s been exploited in the wild.

Authentication 102

Authentication Malware VPN Mobile 102

eSecurity Planet

FEBRUARY 2, 2024

Teslas Get the Spotlight in Recent Ethical Hacking Efforts Researchers have discovered multiple vulnerabilities within Teslas since March 2023. Rapid7’s Zero Day Initiative hosts an event called Pwn2Own, and at the 2023 event, computer security firm Synactiv hacked a Tesla computer within two minutes.

Hacking 121

Hacking IoT Firmware Cybersecurity 121

eSecurity Planet

MARCH 25, 2024

The first vulnerability appears in Ivanti Standalone Security and is tracked as KB-CVE-2023-41724 , with a CVSS rating of 9.6. The Standalone Security vulnerability affects versions 9.17.0, The second vulnerability appears in Ivanti Neurons for IT Service Management and is tracked as CVE-2023-46808. and 9.19.0,

Computers and Electronics 62

Computers and Electronics Software Accountability Authentication 62

The Last Watchdog

JUNE 27, 2023

Porto, Portugal, June 27 th 2023– Jscrambler , a leading solution for JavaScript protection and real-time webpage monitoring, today announces the launch and immediate availability of its free PCI DSS JavaScript Compliance Tool to ensure granular and flexible capacity to meet the stringent new requirements introduced by version 4.0

Retail 100

Retail Security Defenses Banking Media 100

eSecurity Planet

JANUARY 16, 2024

The problem: The United States Cybersecurity and Infrastructure Security Agency (CISA) has announced a vulnerability in Microsoft SharePoint that allows a threat actor to escalate their privileges on the network. The vulnerability can be tracked as CVE-2023-29357. The report didn’t become publicly available until January 11.

Firewall 97

Firewall Firmware IoT Authentication 97

eSecurity Planet

FEBRUARY 19, 2024

On Thursday, February 15, the Cybersecurity and Infrastructure Security Agency added the vulnerability to its catalog after reports that it might be actively exploited again. Palo Alto’s Unit 42 research team said that Akira led the number of ransomware posts from new leak sites in 2023. of Access Rights Manager.

VPN 98

VPN DNS Ransomware Software 98

eSecurity Planet

SEPTEMBER 11, 2023

Network security is another big theme this week: Whether it’s a VPN connection or an enterprise-grade networking platform, patch management solutions typically won’t update network devices, so admins may need to keep an eye on any flaws there too. score of 9.8 out of 10.0, are format string vulnerabilities. 31 and updated Sept.

VPN 109

VPN Firmware Authentication Phishing 109

eSecurity Planet

AUGUST 8, 2023

With its Alphabet origins and former Google CEO Eric Schmidt as chairman, SandboxAQ landed a $500 million funding round earlier this year, the biggest cybersecurity round of 2023 thus far, with an A-list of investors that includes Schmidt, Salesforce CEO Marc Benioff, T.

Encryption 83

Encryption Cybersecurity Security Defenses Banking 83

eSecurity Planet

MARCH 11, 2024

We’ve seen multiple over the last couple of months, but these are new and not to be confused with CVEs from 2023. The problem: CVE-2023-22527 , a remote code execution vulnerability in outdated versions of Atlassian Confluence Data Center and Confluence Server, is currently being actively exploited. LTS) 8.5.5 (LTS)

Authentication 102

Authentication Software VPN Security Defenses 102

eSecurity Planet

MARCH 19, 2024

The problem: Cisco announced patches for 10 vulnerabilities (one critical, four high, five medium) affecting its IOS XR Software, SD-WAN vMaange, and Secure Client products. The vulnerability, CVE-2023-48788 , earns a critical CVSS score of 9.8

Authentication 102

Authentication VPN Software DDOS 102

eSecurity Planet

SEPTEMBER 7, 2023

“Despite slower deal volumes in 2023, M&A interest in cybersecurity remains high and I expect we’ll see an uptick in activity later this year and into 2024,” said Chris Stafford, who is a partner in West Monroe’s M&A Practice. trillion for the middle of 2023. And this may happen sooner than later.

Cybersecurity 108

Cybersecurity Marketing Software DDOS 108

The Last Watchdog

NOVEMBER 1, 2023

1, 2023 — AdviserCyber , a cybersecurity service provider for Registered Investment Advisers (RIAs) with $500M to $3B Assets Under Management (AUM) who must comply with the Securities and Exchange Commission (SEC) cybersecurity requirements, announced its formal launch today. Phoenix, Ariz. —

Cybersecurity 100

Cybersecurity Penetration Testing Cyber threats Risk 100

Thales Cloud Protection & Licensing

SEPTEMBER 18, 2023

Compliance madhav Tue, 09/19/2023 - 05:17 It is essential for any business that stores, processes, and transmits payment card information to comply with the Payment Card Industry Data Security Standard (PCI DSS). Consumers’ payment data is a compelling target for criminals who continue to circumvent IT security defenses.

Financial Services 77

Financial Services Data breaches Accountability Encryption 77

eSecurity Planet

OCTOBER 2, 2023

September 29, 2023 Patch WS_FTP Now: 10 / 10 RCE Vulnerability Revealed Type of attack: Attackers can exploit unpatched vulnerabilities to perform remote code execution (RCE), directory traversal, cross-site scripting (XSS), SQL injection , cross-site request forgery (CSRF), and file enumeration attacks. RCE vulnerability CVE-2023-42117 = 8.1

DDOS 97

DDOS Encryption Software Ransomware 97

eSecurity Planet

OCTOBER 16, 2023

See also: Top Patch and Vulnerability Management tools October 9, 2023 D-Link WiFi range extender susceptible to command injection attacks Type of attack: The vulnerability is a combination of a Denial of Service (DoS) attack and a Remote Command Injection attack.

DDOS 89

DDOS Software Cybersecurity Manufacturing 89

eSecurity Planet

OCTOBER 6, 2023

Spear Phishing Prevention: 10 Ways to Protect Your Organization Get the Free Cybersecurity Newsletter Strengthen your organization's IT security defenses by keeping up to date on the latest cybersecurity news, solutions, and best practices. You can unsubscribe at any time.

Software 128

Software Phishing Mobile Threat Detection 128

eSecurity Planet

SEPTEMBER 25, 2023

Read about the following vulnerabilities and bugs to know what your business and security team should address, as these flaws and attacks can apply to startups and large enterprises alike. An attacker can use policies for scheduled security scans to run a pipeline in GitLab, posing as another user. severity rating.

Ransomware 99

Ransomware Antivirus Penetration Testing Telecommunications 99

eSecurity Planet

OCTOBER 23, 2023

See the Top Patch and Vulnerability Management tools October 16, 2023 Cisco vulnerability could affect over 40,000 pieces of networking equipment Type of attack: Zero-day vulnerability in IOS XE. and CVE-2023-20273 with a CVSS Score of 7.2. of Confluence Data Center and Confluence Server.

Passwords 84

Passwords Penetration Testing Accountability Software 84

Security Affairs

JULY 14, 2023

Black Lotus is able to disable security solutions, including Hypervisor-protected Code Integrity (HVCI), BitLocker, and Windows Defender. The rootkit is able to bypass security defenses like UAC and Secure Boot, it is able to load unsigned drivers used to perform a broad range of malicious activities.

Firmware 97

Firmware Malware CISO Hacking 97

eSecurity Planet

APRIL 1, 2024

The problem: A SQLi flaw tracked as CVE-2023-48788 permits remote code execution (RCE) with SYSTEM privileges in low complexity attacks that don’t require user interaction. However, Oligo Security researchers “found that thousands of publicly exposed Ray servers all over the world were already compromised.”

Authentication 94

Authentication Artificial Intelligence Software Cybersecurity 94