Security Affairs

JUNE 12, 2021

An authentication bypass flaw in the polkit auth system service used on most Linux distros can allow to get a root shell. An authentication bypass vulnerability in the polkit auth system service, tracked as CVE-2021-3560 , which is used on most Linux distros can allow an unprivileged attacker to get a root shell.

Authentication 132

Authentication Cyber Attacks Hacking Information Security 132

Security Affairs

JULY 12, 2022

Microsoft observed a large-scale phishing campaign that used adversary-in-the-middle (AiTM) phishing sites to steal passwords, hijack a user’s sign-in session, and bypass the authentication process even when the victim has enabled the MFA. and certificate-based authentication. SecurityAffairs – hacking, AiTM phishing).

Phishing 128

Phishing Authentication Social Engineering Passwords 128

Security Affairs

APRIL 24, 2022

Atlassian fixed a critical flaw in its Jira software, tracked as CVE-2022-0540 , that could be exploited to bypass authentication. Atlassian has addressed a critical vulnerability in its Jira Seraph software, tracked as CVE-2022-0540 (CVSS score 9.9), that can be exploited by an unauthenticated attacker to bypass authentication.

Authentication 79

Authentication Software Hacking Risk 79

Security Affairs

NOVEMBER 23, 2021

The researcher Janggggg has published on Sunday a proof-of-concept exploit code for an actively exploited vulnerability, tracked as CVE-2021-42321 , in Microsoft Exchange servers. The CVE-2021-42321 is a high-severity remote code execution issue that occurs due to improper validation of cmdlet arguments. Pierluigi Paganini.

Authentication 113

Authentication Hacking Information Security 113

Security Affairs

DECEMBER 20, 2021

The Federal Bureau of Investigation (FBI) revealed that the critical CVE-2021-44515 zero-day vulnerability in Zoho’s ManageEngine Desktop Central has been under active exploitation by nation-state actors since at least October. SecurityAffairs – hacking, Zoho). ” reads the flash alert published by the FBI. to 10.1.2137.2,

Authentication 102

Authentication Engineering Hacking Software 102

Security Affairs

FEBRUARY 4, 2022

billion Azure AD brute force authentication attacks and detected 35.7 billion phishing emails with Microsoft Defender for Office 365 in 2021. Enabling multi-factor authentication (MFA) and passwordless authentication would allow customers to protect their accounts from brute force attacks. ” states Microsoft.

Phishing 90

Phishing Authentication Education Cyber threats 90

Security Affairs

JULY 26, 2023

Experts warn of a severe privilege escalation, tracked as CVE-2023-30799 , in MikroTik RouterOS that can be exploited to hack vulnerable devices. A remote and authenticated attacker can escalate privileges from admin to super-admin on the Winbox or HTTP interface.” “MikroTik RouterOS stable before 6.49.7

Hacking 94

Hacking Passwords Authentication Encryption 94

Security Affairs

MAY 13, 2024

In December 2021, experts at Check Point Research observed the resurgence of the Phorpiex botnet. .” Password Management : Use strong, unique passwords and implement multi-factor authentication (MFA) whenever possible, prioritizing authentication apps or hardware tokens over SMS text-based codes.

Phishing 103

Phishing Ransomware Security Awareness Authentication 103

Security Affairs

JUNE 25, 2021

Fortinet has recently addressed a high-severity vulnerability ( CVE-2021-22123 ) affecting its FortiWeb web application firewall (WAF), a remote, authenticated attacker can exploit it to execute arbitrary commands via the SAML server configuration page. SecurityAffairs – hacking, ransomware). Pierluigi Paganini.

Hacking 111

Hacking Firewall Authentication Technology 111

Security Affairs

JULY 6, 2021

Positive Technologies researcher Nikita Abramov has provided details about the CVE-2021-20026 command injection vulnerability that affects SonicWall’s Network Security Manager (NSM) product. The flaw could be exploited by an authenticated attacker to perform OS command injection using a crafted HTTP request. R6 and 2.2.1-R6

Authentication 111

Authentication Network Security VPN Firewall 111

Security Affairs

SEPTEMBER 3, 2021

USCYBERCOM is urging organizations to patch a critical CVE-2021-26084 flaw in Atlassian Confluence Server and Data Center, ahead of the Labor Day weekend. . US Cyber Command (USCYBERCOM) has issued an alert to warn US organizations to address Atlassian Confluence CVE-2021-26084 vulnerability immediately, ahead of the Labor Day weekend.

Authentication 96

Authentication Cryptocurrency Hacking Government 96

Security Affairs

SEPTEMBER 17, 2021

Chipmaker AMD has addressed a vulnerability in PSP driver, tracked as CVE-2021-26333 , that could allow an attacker to obtain sensitive information from the targeted system. ” reads the advisory published by the security firm. SecurityAffairs – hacking, CVE-2021-26333). Pierluigi Paganini.

Architecture 116

Architecture Authentication Hacking Information Security 116

Security Affairs

DECEMBER 13, 2022

Twitter confirmed that the recent leak of members’ profile information resulted from the 2021 data breach disclosed in August 2022. Twitter confirmed that the recent data leak of millions of profiles resulted from the 2021 data breach that the company disclosed in August 2022. Source: Twitter account @sonoclaudio.

Data breaches 94

Data breaches Accountability Media Hacking 94

Security Affairs

SEPTEMBER 30, 2021

Threat actors are actively exploiting the recently disclosed CVE-2021-26084 RCE vulnerability in Atlassian Confluence deployments. At the end of August, Atlassian released security patches to address the critical CVE-2021-26084 flaw that affects the Confluence enterprise collaboration product. link] — U.S.

Cryptocurrency 93

Cryptocurrency Authentication Malware Marketing 93

Security Affairs

JULY 28, 2022

ENISA published a report that includes anonymised and aggregated information about major telecom security incidents in 2021. ENISA published a report that provides anonymized and aggregated information about major telecom security incidents in 2021. SecurityAffairs – hacking, telecom security incidents).

Authentication 94

Authentication Hacking Accountability Information Security 94

Security Affairs

AUGUST 27, 2021

Braun ‘s Infusomat Space Large Volume Pump and SpaceStation that could be remotely hacked. The five previously unreported vulnerabilities in the medical system are: CVE-2021-33886 – Use of Externally-Controlled Format String (CVSS 7.7) CVE-2021-33885 – Insufficient Verification of Data Authenticity (CVSS 9.7)

Hacking 104

Hacking Authentication Internet Internet 104

Security Affairs

MAY 5, 2021

Researchers found a critical vulnerability in HPE Edgeline Infrastructure Manager that could be exploited by a remote attacker to bypass authentication. “A security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software. . Pierluigi Paganini.

Authentication 91

Authentication Passwords Accountability System Administration 91

Security Affairs

SEPTEMBER 2, 2021

Threat actors were spotted exploiting the CVE-2021-26084 vulnerability in Atlassian’s Confluence enterprise collaboration product a few days after it was patched by the vendor. Last week, Atlassian released security patches to address the critical CVE-2021-26084 flaw that affects the Confluence enterprise collaboration product.

Authentication 93

Authentication Internet Internet Hacking 93

Security Affairs

JANUARY 18, 2021

“Around 0400 GMT on 16 Jan 2021, an administrator account on the OpenWrt forum ( [link] ) was breached. It is not known how the account was accessed: the account had a good password, but did not have two-factor authentication enabled.” If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Hacking 129

Hacking Data breaches Passwords Accountability 129

Security Affairs

APRIL 7, 2021

The Pwn2Own 2021 hacking competition has begun and white hat hackers participants earned more than $500000 on the first day. The Pwn2Own 2021 has begun, this year the formula for the popular hacking competition sees the distribution of the participants amongst various locations. million in cash and other prizes.

Authentication 62

Authentication Hacking Information Security Malware 62

Security Affairs

OCTOBER 26, 2021

“Unknown cyber criminals using Ranzy Locker ransomware had compromised more than 30 US businesses as of July 2021. The victims include the construction subsector of the critical manufacturing sector, the academia subsector of the government facilities sector, the information technology sector, and the transportation sector.”

Ransomware 127

Ransomware Firmware Antivirus Accountability 127

Security Affairs

APRIL 9, 2021

The Pwn2Own 2021 hacking competition was concluded, participants earned more than $1.2 The Pwn2Own 2021 hacking competition reached the end, participants earned more than $1.2 Only Oracle VirtualBox was not hacked, experts demonstrated working exploits for all the other products. million prize pool.

Hacking 66

Hacking Authentication Ransomware Information Security 66

Security Affairs

NOVEMBER 9, 2021

Microsoft Patch Tuesday security updates for November 2021 address 55 vulnerabilities in multiple products and warn of two actively exploited issues. “We are aware of limited targeted attacks in the wild using one of vulnerabilities ( CVE-2021-42321 ), which is a post-authentication vulnerability in Exchange 2016 and 2019.

Authentication 87

Authentication Hacking Information Security 87

Security Affairs

MARCH 27, 2024

The Star Labs team demonstrated the vulnerability at the Pwn2Own Vancouver 2023 hacking competition. “In a network-based attack, an authenticated attacker as a Site Owner could execute code remotely on the SharePoint Server.” ” reads the advisory published by Microsoft.

Hacking 114

Hacking Authentication Cybersecurity Risk 114

Security Affairs

MARCH 30, 2024

The seller, who goes online with the moniker MajorNelson, claims that the data was obtained from an unnamed AT&T division by @ ShinyHunters in 2021. It should be noted before anyone hits us with an “aktschually” – the data was stolen in 2021. The archive contains 73.481.539 records. “It It was leaked online today.”

Data breaches 133

Data breaches Telecommunications Cybercrime Hacking 133

Security Affairs

APRIL 20, 2021

According to coordinated reports published by FireEye and Pulse Secure , two hacking groups have exploited a new zero-day vulnerability in Pulse Secure VPN equipment to break into the networks of US defense contractors and government organizations worldwide. ” reads the advisory published by Pulse Secure. .”

VPN 114

VPN Hacking Authentication Government 114

Security Affairs

FEBRUARY 10, 2022

The FBI reported that US citizens have lost more than $68 million to SIM swapping attacks in 2021, the number of complaints since 2018 and associated losses have increased almost fivefold. In 2021, IC3 received 1,611 SIM swapping complaints with adjusted losses of more than $68 million.”

Mobile 90

Mobile Cryptocurrency Authentication Accountability 90

Security Affairs

FEBRUARY 21, 2024

VMware urges customers to uninstall the deprecated Enhanced Authentication Plugin (EAP) after the disclosure of a critical flaw CVE-2024-22245. VMware is urging users to uninstall the deprecated Enhanced Authentication Plugin (EAP) after the discovery of an arbitrary authentication relay flaw CVE-2024-22245 (CVSS score: 9.6).

Authentication 116

Authentication Ransomware Software Information Security 116

Security Affairs

OCTOBER 7, 2021

A proof of concept exploit for two authentication bypass vulnerabilities in Dahua cameras is available online, users are recommended to immediately apply updates. “The identity authentication bypass vulnerability found in some Dahua products during the login process. SecurityAffairs – hacking, Dahua cameras).

Authentication 126

Authentication Firmware Hacking Engineering 126

Security Affairs

SEPTEMBER 7, 2021

The attackers breached a deprecated Confluence service used by the organization exploiting the Confluence CVE-2021-26084 vulnerability. In response to the incident, the Jenkins team took the affected server offline and launched an investigation into the security incident. Cyber Command (@US_CYBERCOM) September 3, 2021.

Hacking 92

Hacking Cryptocurrency Authentication Internet 92

Security Affairs

FEBRUARY 3, 2021

Recently Qualys researchers found a Sudo vulnerability, tracked as CVE-2021-3156 , that has allowed any local user to gain root privileges on Unix-like operating systems without authentication. News of the day is that the CVE-2021-3156 flaw also impacts the latest version of Apple macOS Big Sur, and Apple has yet to address it.

Authentication 123

Authentication Hacking Accountability Cybersecurity 123

Security Affairs

JULY 8, 2021

The experts reported the flaw to the software vendor in February 2021 and the company addressed them with the release of Sage X3 Version 9 (Syracuse 9.22.7.2), Sage X3 HR & Payroll Version 9 (Syracuse 9.24.1.3), Sage X3 Version 11 (Syracuse 11.25.2.6), and Sage X3 Version 12 (Syracuse 12.10.2.8). SecurityAffairs – hacking, SAGE).

Hacking 106

Hacking Authentication VPN Software 106

Security Affairs

JULY 9, 2022

Four of the fixed issues have been rated as a “high” severity, they are CVE-2022-26117, CVE-2021-43072, CVE-2022-30302, and CVE-2021-41031. SecurityAffairs – hacking, Forinet). The post Fortinet addressed multiple vulnerabilities in several products appeared first on Security Affairs. Pierluigi Paganini.

Authentication 138

Authentication Passwords Hacking Accountability 138

Security Affairs

OCTOBER 20, 2023

US CISA added the vulnerability CVE-2021-1435 in Cisco IOS XE to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added the vulnerability CVE-2021-1435 in Cisco IOS XE. ” reads the report published by Cisco Talos.

Authentication 114

Authentication Hacking Accountability Software 114

Security Affairs

APRIL 10, 2024

The seller, who goes online with the moniker MajorNelson, claimed that the data was obtained from an unnamed AT&T division by @ ShinyHunters in 2021. It should be noted before anyone hits us with an “aktschually” – the data was stolen in 2021. The archive contains 73.481.539 records. “It It was leaked online today.”

Data breaches 99

Data breaches Telecommunications Identity Theft Hacking 99

Security Affairs

AUGUST 27, 2021

Researchers from Nozomi Networks discovered a critical vulnerability that can be exploited to hack a video surveillance product made by Annke. The vulnerability, tracked as CVE-2021-32941 can be exploited by an attacker to hack a video surveillance product made by Annke, a provider of home and business security solutions.

Surveillance 99

Surveillance Hacking Firmware Manufacturing 99

Security Affairs

JANUARY 22, 2022

An attacker could chain the vulnerabilities to achieve pre-authenticated remote code execution on vulnerable Linux servers. The first issue, tracked as CVE-2021-45467, is a file inclusion vulnerability that occurs when a web application is tricked into exposing or running arbitrary files on the webserver. ” explained the expert.

Hacking 101

Hacking Authentication Information Security 101