Security Affairs

JANUARY 12, 2024

In December, experts warned of an authentication bypass zero-day flaw that affects Apache OfBiz, an open-source Enterprise Resource Planning (ERP) system. An attacker can trigger the vulnerability, tracked as CVE-2023-51467 , to bypass authentication to achieve a simple Server-Side Request Forgery (SSRF). in the Apache OfBiz.

Authentication 126

Authentication Software Passwords Hacking 126

Security Affairs

JUNE 1, 2020

The expert Bhavuk Jain received an award of $100,000 for reporting a severe security issue in ‘Sign in with Apple’ authentication bypass bug that could allow the takeover of third-party user accounts. . The accounts are protected with two-factor authentication, and Apple does not track users’ activity in their app or website.

Authentication 88

Authentication Accountability Advertising Passwords 88

Security Affairs

SEPTEMBER 24, 2020

Microsoft is actively tracking threat actor activity using exploits for the CVE-2020-1472 Netlogon EoP vulnerability, dubbed Zerologon. — Microsoft Security Intelligence (@MsftSecIntel) September 24, 2020. We strongly recommend customers to immediately apply security updates for CVE-2020-1472.

Security Intelligence 130

Security Intelligence Authentication Advertising Passwords 130

Security Affairs

NOVEMBER 23, 2020

VMware last week addressed six vulnerabilities (CVE-2020-3984, CVE-2020-3985, CVE-2020-4000, CVE-2020-4001, CVE-2020-4002, CVE-2020-4003) in its SD-WAN Orchestrator product, including some issues that can be chained by an attacker to hijack traffic or shut down an enterprise network.

Passwords 85

Passwords Authentication Accountability Hacking 85

Security Affairs

JUNE 8, 2022

“Upon gaining an initial foothold into a telecommunications organization or network service provider, PRC state-sponsored cyber actors have identified critical users and infrastructure including systems critical to maintaining the security of authentication, authorization, and accounting.

Telecommunications 95

Telecommunications Authentication Passwords Accountability 95

Security Affairs

OCTOBER 6, 2019

Microsoft says that the Iran-linked cyber-espionage group tracked as Phosphorus (aka APT35 , Charming Kitten , Newscaster , and Ajax Security Team) a 2020 presidential campaign. In some instances, they gathered phone numbers belonging to their targets and used them to assist in authenticating password resets.”

Accountability 75

Accountability Passwords Advertising Government 75

Security Affairs

SEPTEMBER 14, 2020

Zerologon attack allows threat actors to take over enterprise networks by exploiting the CVE-2020-1472 patched in the August 2020 Patch Tuesday. Administrators of enterprise Windows Servers have to install the August 2020 Patch Tuesday as soon as possible to protect their systems from Zerologon attack that exploits the CVE-2020-1472.

Authentication 91

Authentication Passwords Advertising Architecture 91

Security Affairs

OCTOBER 30, 2020

The CVE-2020-1472 flaw is an elevation of privilege that resides in the Netlogon. The Netlogon service is an Authentication Mechanism used in the Windows Client Authentication Architecture which verifies logon requests, and it registers, authenticates, and locates Domain Controllers.

Authentication 133

Authentication Advertising Architecture Cybercrime 133

Security Affairs

JULY 28, 2020

BleepingComputer verified the authenticity of some of the exposed data and published the full list of the 18 archives leaked by the threat actor: Company User Records Reported Breach Date Known? Million March 26th, 2020 Yes Dave.com 7 Million July 2020 * Yes Drizly.com 2.4 Million July 2020 * No GGumim.co.kr Appen.com 5.8

Passwords 129

Passwords Advertising Education Banking 129

Security Affairs

OCTOBER 4, 2020

HP released a security advisory that includes details for three critical and high severity vulnerabilities, tracked as CVE-2020-6925, CVE-2020-6926, and CVE-2020-6927, that impact the HP Device Manager. Base Score CVE-2020-6925 Weak Cipher All versions of HP Device Manager 7.0

Hacking 131

Hacking Accountability Passwords InfoSec 131

Security Affairs

NOVEMBER 13, 2020

Schneider Electric released security advisories for multiple vulnerabilities impacting various products, including four issues that can be exploited by attackers to take control of Modicon M221 programmable logic controllers (PLCs). The advisory also includes General Security Recommendations for the above vulnerabilities.

Encryption 106

Encryption Passwords Authentication Software 106

Security Affairs

SEPTEMBER 20, 2020

DHS CISA issued an emergency directive to tells government agencies to address the Zerologon vulnerability (CVE-2020-1472) by Monday. The Department of Homeland Security’s CISA issued an emergency directive to order government agencies to address the Zerologon vulnerability (CVE-2020-1472) by Monday.

Authentication 105

Authentication Passwords Advertising Government 105

Security Affairs

MARCH 7, 2023

The security breach suffered by LastPass was caused by the failure to update Plex on the home computer of one of its engineers. The hackers installed a keylogger on the DevOp engineer’s computed and captured his master password. “We have recently been made aware of a security vulnerability related to Plex Media Server.

Software 97

Software Hacking Data breaches Media 97

Security Affairs

OCTOBER 10, 2020

We’re seeing more activity leveraging the CVE-2020-1472 exploit (ZeroLogon). — Microsoft Security Intelligence (@MsftSecIntel) October 6, 2020. — Microsoft Security Intelligence (@MsftSecIntel) October 6, 2020. The fake updates lead to UAC bypass and use of wscript.exe to run malicious scripts.

Cybercrime 118

Cybercrime Security Intelligence Authentication Banking 118

Security Affairs

FEBRUARY 10, 2022

. “The Federal Bureau of Investigation is issuing this announcement to inform mobile carriers and the public of the increasing use of Subscriber Identity Module (SIM) swapping by criminals to steal money from fiat and virtual currency accounts.” Use a variation of unique passwords to access online accounts.

Mobile 91

Mobile Cryptocurrency Authentication Accountability 91

Security Affairs

JANUARY 25, 2020

Cisco has addressed a high-severity flaw in the Cisco Webex video conferencing platform ( CVE-2020-3142) that could be exploited by a remote, unauthenticated attacker to enter a password-protected video conference meeting. reads the security advisory published by Cisco. reads the security advisory published by Cisco. “An

Mobile 134

Mobile Passwords Advertising Authentication 134

Security Affairs

NOVEMBER 24, 2020

This kind of attacks is very efficient due to the bad habit of users of reusing the same password over multiple services. The database is 72 GB in size, it includes 380+ million records containing email addresses and login credentials (usernames and passwords), and whether the credentials could successfully login to a Spotify account.

Identity Theft 102

Identity Theft Accountability Passwords Phishing 102

Security Affairs

DECEMBER 15, 2021

Once a user has successfully authenticated on the OWA authentication web page, the Owawa module captures its credential. The module was most likely compiled between late 2020 and April 2021. The module verifies the successful authentication by checking that the OWA application is sending an authentication token back to the user.

Encryption 103

Encryption Authentication Passwords Internet 103

Security Affairs

NOVEMBER 16, 2023

Samsung Electronics suffered a data breach that exposed the personal information of some of its customers to an unauthorized individual. The security breach was discovered on November 13, 2023, and impacted customers who made purchases from the Samsung UK online store between July 1, 2019, and June 30, 2020.

Data breaches 125

Data breaches eCommerce Hacking Authentication 125

Security Affairs

DECEMBER 10, 2020

The proof-of-concept exploit code for the Kerberos Bronze Bit attack was published online, it allows intruders to bypass authentication and access sensitive network services. The proof-of-concept exploit code for the Kerberos Bronze Bit attack, tracked as CVE-2020-17049 , was published online this week. Pierluigi Paganini.

Authentication 106

Authentication Encryption Passwords Hacking 106

Security Affairs

SEPTEMBER 23, 2020

Town Sports International lost the battle with the Coronavirus outbreak and filed for bankruptcy on September 14, 2020. “Fitness chain Town Sports International has exposed 600,000 records of members and employees on the web without a password or any other authentication required to access it, Comparitech researchers report.”

Data breaches 91

Data breaches Phishing Passwords Advertising 91

Security Affairs

JUNE 21, 2021

The group published the link to 13 password-protected archives, allegedly containing sensitive data stolen from the chipmaker. Attention Password for the Archives: XXXXXXXXXXX#1JLDiw8″ reads the post published by the group on its leak site. !!Inside Only use secure networks and avoid using public Wi-Fi networks.

Ransomware 138

Ransomware Passwords VPN Authentication 138

Security Affairs

APRIL 14, 2020

Quidd , the online marketplace for trading stickers, cards, toys, and other collectibles, discloses a data breach in has suffered in 2019, it is also recommending users to change their passwords. The data breach was first reported by Risk Based Security last week, since then, Quidd has never disclosed any data breach recent security incident.

Accountability 140

Accountability Hacking Data breaches Passwords 140

Security Affairs

APRIL 11, 2021

The experts reported their findings to the company, but at the time of this writing, Clubhouse has yet to confirm the authenticity of the exposed data. In February, an attacker demonstrated that Clubhouse chats are not secure, he was able to siphon audio feeds from “multiple rooms” into its own website. photo URLs.

Identity Theft 141

Identity Theft Phishing Password Management Media 141

Security Affairs

MAY 7, 2021

Most organizations use databases to store sensitive information. This includes passwords, usernames, document scans, health records, bank account and credit card details, as well as other essential data, all easily searchable and conveniently stored in one place. What were we looking at? Unsecured databases exposed for years.

Passwords 129

Passwords Authentication Identity Theft Engineering 129

Security Affairs

FEBRUARY 14, 2021

The FBI is warning companies about the use of out-of-date Windows 7 systems, desktop sharing software TeamViewer, and weak account passwords. Set random passwords to generate 10-character alphanumeric passwords. If using personal passwords, utilize complex rotating passwords of varying lengths. Windows 10).

Passwords 139

Passwords Social Engineering Software System Administration 139

Security Affairs

SEPTEMBER 3, 2021

In another incident that occurred in March 2021, a ransomware attack blocked the operations at a US beverage company, while in a November 2020 attack on a US-based international food and agriculture business threat actors requested the payment of a gigantic $40 million ransom. Avoid reusing passwords for multiple accounts.

Ransomware 97

Ransomware Passwords Backups Firmware 97

Security Affairs

JULY 14, 2020

The company confirmed the security breach over the weekend, it revealed that unknown threat actors accessed a partner’s systems in June stealing user information. In response to the incident, the bidding portal has forced a password reset for all users’ accounts, both bidder and auctioneer ones. . The poster is selling 3.4

Hacking 100

Hacking Data breaches Identity Theft Advertising 100

Security Affairs

APRIL 25, 2021

Researchers from Eye Security have found thousands of unpatched ABUS Secvest home alarm systems exposed online despite the vendor has addressed a critical bug (CVE-2020-28973) in January. “The ABUS Secvest wireless alarm system FUAA50000 (v3.01.17) fails to properly authenticate some requests to its built-in HTTPS interface.

Firmware 112

Firmware Passwords Authentication Wireless 112

Security Affairs

DECEMBER 31, 2020

The malware has been active since early December targeting public-facing services, including MySQL, Tomcat admin panel and Jenkins that are protected with weak passwords. Experts pointed out that an older version of the worm also attempted to exploit CVE-2020-14882 WebLogic’s vulnerability. We have a free community edition.

Malware 145

Malware Passwords Authentication Hacking 145

Security Affairs

OCTOBER 6, 2020

Using a WordPress flaw (File-Manager plugin–CVE-2020-25213) to leverage Zerologon (CVE-2020-1472) and attack companies’ Domain Controllers. Recently, a critical vulnerability called Zerologon – CVE-2020-1472 – has become a trending subject around the globe. w4fz5uck5) September 8, 2020. Figure 2: PoC – CVE-2020-25213.

Social Engineering 102

Social Engineering Passwords Advertising Accountability 102

Security Affairs

MARCH 13, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added a remote code execution (RCE) vulnerability in the Plex Media Server, tracked as CVE-2020-5741 (CVSS score: 7.2), to its Known Exploited Vulnerabilities Catalog. CISAgov added #CVE -2020-5741 & CVE-2021-39144 to the Known Exploited Vulnerabilities Catalog. .”

Media 80

Media InfoSec Password Management Engineering 80

Security Affairs

SEPTEMBER 8, 2020

Probably the most interesting vulnerability is an undocumented backdoor, tracked as CVE-2020-15835, that can be exploited by attackers to gain root access to a router. “The authentication function contains undocumented code which provides the ability to authenticate as root without having to know the actual root password.

Firmware 88

Firmware Wireless Authentication Advertising 88

SecureList

FEBRUARY 1, 2022

However, almost as soon as development began, serious questions arose about the security of the service’s data storage and the possibility of it being misused. In 2020, Proteus went bankrupt. That’s why we decided to test our assumption and delve into the security landscape of telehealth in 2020 and 2021.

Phishing 116

Phishing Healthcare IoT Authentication 116

CyberSecurity Insiders

JULY 21, 2021

But a survey conducted by Google and Harris found that many people still refuse to adopt even the most essential credential security measures: just 37 percent use two-factor authentication, around a third change their passwords regularly, and a mere 15 percent use a password manager.

Social Engineering 145

Social Engineering Password Management Passwords Phishing 145

Security Affairs

JANUARY 9, 2023

The crypto-miner Kinsing was first spotted by security firm Aqua Security in April 2020, at the time the experts spotted threat actors scanning the Internet for Docker servers running API ports exposed without a password. The Kinsing malware abuses the resources of the Docker installations to mine cryptocurrency.

Malware 91

Malware Authentication Cryptocurrency Internet 91

Security Affairs

NOVEMBER 23, 2020

FBI is warning private industry partners of a surge in Ragnar Locker ransomware activity following a confirmed attack from April 2020. Federal Bureau of Investigation (FBI) issued a flash alert (MU-000140-MW) to warn private industry partners of an increase of the Ragnar Locker ransomware activity following a confirmed attack from April 2020.

Ransomware 145

Ransomware Encryption VPN Backups 145