Security Affairs

MARCH 8, 2024

Cisco addressed two high-severity vulnerabilities in Secure Client that could lead to code execution and unauthorized remote access VPN sessions. Cisco released security patches to address two high-severity vulnerabilities in Secure Client respectively tracked as CVE-2024-20337 and CVE-2024-20338. ” reads the advisory.

VPN 93

VPN Authentication Hacking Information Security 93

NopSec

FEBRUARY 28, 2024

February 2024 is off to a ripping start for security research. Ghost CMS Persistent XSS CVE-2024-23724 Researchers at Rhino have identified a persistent cross-site scripting (XSS) vulnerability that impacts Ghost CMS. The attack chain is pretty interesting, but does require authenticated access. include=roles” endpoint.

Authentication 59

Authentication Accountability Passwords Risk 59

Security Affairs

APRIL 25, 2024

Early in 2024, a customer contacted Cisco to report a suspicious related to its Cisco Adaptive Security Appliances (ASA). By redirecting the pointer to the Line Dancer interpreter, attackers can interact with the device through POST requests without authentication. PSIRT and Talos launched an investigation to support the customer.

VPN 108

VPN Software Firewall Authentication 108

Security Affairs

JANUARY 13, 2024

Akira ransomware targets Finnish organizations GitLab fixed a critical zero-click account hijacking flaw Juniper Networks fixed a critical RCE bug in its firewalls and switches Vast Voter Data Leaks Cast Shadow Over Indonesia ’s 2024 Presidential Election Researchers created a PoC for Apache OFBiz flaw CVE-2023-51467 Team Liquid’s wiki leak exposes (..)

VPN 106

VPN Cybercrime Ransomware Hacking 106

Security Affairs

APRIL 19, 2024

The MITRE Corporation revealed that a nation-state actor compromised its systems in January 2024 by exploiting Ivanti VPN zero-days. In April 2024, MITRE disclosed a security breach in one of its research and prototyping networks.

Cyber Attacks 111

Cyber Attacks VPN Authentication Hacking 111

Security Affairs

APRIL 24, 2024

Early in 2024, a customer contacted Cisco to report a suspicious related to its Cisco Adaptive Security Appliances (ASA). By redirecting the pointer to the Line Dancer interpreter, attackers can interact with the device through POST requests without authentication. PSIRT and Talos launched an investigation to support the customer.

Firewall 104

Firewall Government VPN Authentication 104

Security Affairs

FEBRUARY 27, 2024

CVE-2023-6398 – A post-authentication command injection vulnerability in the file upload binary in some firewall and AP versions could allow an authenticated attacker with administrator privileges to execute some operating system (OS) commands on an affected device via FTP. in April 2024 Table 2. Patch 1 ZLD V4.32

Firewall 111

Firewall VPN Authentication Hacking 111

Security Affairs

JANUARY 11, 2024

Software firm Ivanti reported that threat actors are exploiting two zero-day vulnerabilities (CVE-2023-46805, CVE-2024-21887) in Connect Secure (ICS) and Policy Secure to remotely execute arbitrary commands on targeted gateways. is an Authentication Bypass issue that resides in the web component of Ivanti ICS 9.x, 20240107.1.xml

Authentication 104

Authentication VPN Mobile Hacking 104

Security Affairs

JANUARY 18, 2024

CVE-2024-0519 – Google Chromium V8 Out-of-Bounds Memory Access Vulnerability. Citrix NetScaler ADC and NetScaler Gateway contain a code injection vulnerability that allows for authenticated remote code execution on the management interface with access to NSIP, CLIP, or SNIP. The flaw was reported by Anonymous on January 11, 2024.

Authentication 115

Authentication VPN Software Engineering 115

Security Affairs

MARCH 1, 2024

The advisory provides details about the exploitation in the wild of Connect Secure and Policy Secure vulnerabilities CVE-2023-46805 , CVE-2024-21887 , and CVE-2024-21893. Multiple threat actors are chaining these issues to bypass authentication, craft malicious requests, and execute arbitrary commands with elevated privileges.

Authentication 78

Authentication Cyber threats VPN Government 78

Security Affairs

MAY 1, 2024

A new malware named Cuttlefish targets enterprise-grade and small office/home office (SOHO) routers to harvest public cloud authentication data. The malware creates a proxy or VPN tunnel on the compromised router to exfiltrate data, and then uses stolen credentials to access targeted resources.

Malware 101

Malware DNS Authentication Telecommunications 101

Security Affairs

JANUARY 24, 2024

In January 2024, the Finish National Cybersecurity Center (NCSC-FI) reported an increase in Akira ransomware attacks, targeting organizations in the country. The ransomware attack reported in late 2023, targeted organizations’ networks using poorly secured VPN gateway on Cisco ASA or FTD devices. ” concludes the update.

Ransomware 107

Ransomware VPN Government Retail 107

The Last Watchdog

MAY 14, 2021

Early SD-WAN solutions “were built only to replace an MPLS-VPN with an Internet-based VPN,” Ahuja says. All of these tools became extremely necessary to ensure that you could authenticate the user before allowing them access to the right resources in the network,” Ahuja says. Those estimates may yet turn out to be conservative.

Firewall 138

Firewall Mobile VPN Digital transformation 138

eSecurity Planet

JANUARY 29, 2024

Each user also has access to a free VPN to use when connecting to public Wi-Fi, and an Identity Dashboard that scans the dark web for potential fraud. This software uses patented security architecture with 256-bit encryption, plus built-in two factor authentication. You can unsubscribe at any time.

Password Management 109

Password Management Passwords Authentication Accountability 109

Security Boulevard

FEBRUARY 2, 2024

Introduction Ivanti, an IT management and security company, has issued a warning about multiple zero-day vulnerabilities in its VPN products exploited by Chinese state-backed hackers since December 2023. and CVE-2024-21887(a command-injection vulnerability found into multiple web components with a CVSS score of 9.1)

VPN 64

VPN Risk Architecture Firewall 64

NopSec

JANUARY 31, 2024

We open up 2024 with an interesting mix of vulnerabilities, some of which have been patched for nearly a year. We save the best for last and take a look at a serious duo of vulnerabilities that impact Invanit (Pulse Secure) SSL VPNs. Roll up your sleeves and drop into a command line as we cover the trending CVEs of January 2024.

VPN 59

VPN Government Risk Hacking 59

Security Affairs

FEBRUARY 4, 2024

Ransomware Revenue Down As More Victims Refuse to Pay Energy giant Schneider Electric hit by Cactus ransomware attack Hundreds Of Network Operators’ Credentials Found Circulating In Dark Web Fla.

Identity Theft 105

Identity Theft VPN Malware Ransomware 105

Security Affairs

APRIL 12, 2019

At least four VPN apps sold or made available to enterprise customers share security flaws, warns the Carnegie Mellon University CERT Coordination Center (CERT/CC). Virtual private networks (VPNs) are affordable, easy to use, and a vital component in your system. What if these VPNs are vulnerable to attackers? 8.3R6, and 9.0R2.

VPN 87

VPN Marketing Authentication Small Business 87

Security Boulevard

JANUARY 2, 2024

Let's delve into the rewind of 2023, exploring five influential trends and threats that molded the cyberthreat landscape and are poised to resonate throughout enterprises in 2024. This hack served as a stark reminder that the supply chain remains a critical vulnerability in enterprise security. The solution?

CISO 104

CISO Social Engineering Architecture Ransomware 104

Cisco Security

AUGUST 28, 2023

At each conference, we have a hack-a-thon: to create, prove, test, improve and finally put into production new or improved integrations. All these protocols can be easily subverted by man-in-the-middle (MitM) attacks, allowing an adversary to authenticate against services such as email. iPhone Mail using IMAP to authenticate.

Wireless 68

Wireless DNS Mobile Technology 68

eSecurity Planet

MARCH 4, 2024

February 26, 2024 FCKeditor Used for SEO Poisoning on Government, University Sites Type of vulnerability: Malicious URL redirect. February 27, 2024 Ransomware Gangs Target Unpatched ScreenConnect Servers Type of vulnerability: Authentication bypass and path traversal. The fix: Apply Windows patches ASAP.

IoT 117

IoT Internet Internet Ransomware 117