Security Affairs

APRIL 16, 2024

Cisco Talos warns of large-scale brute-force attacks against a variety of targets, including VPN services, web application authentication interfaces and SSH services. ” reads the advisory published by Cisco Talos. The advisory published by Talos includes a list of indicators of compromise (IoCs) for this campaign.

VPN 125

VPN Firewall Authentication Hacking 125

Dark Reading

OCTOBER 12, 2021

Internet giant aims to help companies use the cloud securely and adds more security features to its productivity workspaces to better compete with Microsoft.

Internet 119

Internet Internet 119

Security Affairs

APRIL 28, 2024

Identity and access management services provider Okta warned of a spike in credential stuffing attacks aimed at online services. ” reads the advisory published by Okta. . ” reads the advisory published by Okta. The experts noticed that millions of requests have been routed through these services.

VPN 89

VPN Accountability Firewall Data breaches 89

Threatpost

DECEMBER 29, 2021

Jason Kent, hacker-in-residence at Cequence Security, discusses sneaky shopping bot tactics (i.e., domain parking) seen in a mass campaign, and what retail security teams can do about them.

Retail 114

Retail Accountability InfoSec 114

Security Affairs

FEBRUARY 21, 2024

A threat actor could trick a domain user with EAP installed in its web browser into requesting and relaying service tickets for arbitrary Active Directory Service Principal Names (SPNs). ” reads the advisory published by the virtualization giant. ” continues the advisory.

Authentication 124

Authentication Ransomware Software Information Security 124

Security Affairs

FEBRUARY 26, 2024

Russia-linked APT29 threat actors have switched to targeting cloud services, according to a joint alert issued by the Five Eyes cybersecurity agencies. ” reads the joint advisory. ” reads the joint advisory. ” continues the advisory.

Accountability 115

Accountability Authentication Passwords Internet 115

Security Affairs

APRIL 4, 2024

Ivanti addressed four flaws impacting Connect Secure and Policy Secure Gateways that could lead to code execution and denial-of-service (DoS) condition. Ivanti has released security updates to address four security flaws impacting Connect Secure and Policy Secure Gateways that could result in code execution and denial-of-service (DoS).

Authentication 106

Authentication Hacking Cybersecurity Information Security 106

Security Affairs

MARCH 14, 2024

Cisco this week addressed high-severity elevation of privilege and denial-of-service (DoS) vulnerabilities in IOS RX software. Cisco addressed multiple vulnerabilities in IOS RX software, including three high-severity issues that can be exploited to elevate privileges and trigger a denial-of-service (DoS) condition.

Software 114

Software Authentication Hacking Information Security 114

Bleeping Computer

FEBRUARY 19, 2024

In an advisory today Germany's federal intelligence agency (BfV) and South Korea's National Intelligence Service (NIS) warn of an ongoing cyber-espionage operation targeting the global defense sector on behalf of the North Korean government. [.]

Government 110

Government 110

The Hacker News

FEBRUARY 27, 2024

Cybersecurity and intelligence agencies from the Five Eyes nations have released a joint advisory detailing the evolving tactics of the Russian state-sponsored threat actor known as APT29.

Hacking 112

Hacking Cybersecurity 112

Schneier on Security

OCTOBER 21, 2020

The NSA released an advisory listing the top twenty-five known vulnerabilities currently being exploited by Chinese nation-state attackers. The majority of the products are either for remote access (T1133) or for external web services (T1190), and should be prioritized for immediate patching.

Hacking 275

Hacking Government Internet Internet 275

Krebs on Security

DECEMBER 1, 2022

ConnectWise , which offers a self-hosted, remote desktop software application that is widely used by Managed Service Providers (MSPs), is warning about an unusually sophisticated phishing attack that can let attackers take remote control over user systems when recipients click the included link. build and the then-canary 22.9

Phishing 228

Phishing Architecture Passwords Accountability 228

Krebs on Security

MARCH 28, 2023

The United Kingdom’s National Crime Agency (NCA) has been busy setting up phony DDoS-for-hire websites that seek to collect information on users, remind them that launching DDoS attacks is illegal, and generally increase the level of paranoia for people looking to hire such services. Image: NCA. ” the NCA announcement continues.

DDOS 238

DDOS Marketing Computers and Electronics Risk 238

The Hacker News

FEBRUARY 20, 2024

In a joint advisory published by Germany's Federal Office for the Protection of the Constitution (BfV) and South Korea's National Intelligence Service (NIS), the agencies said the goal of the attacks is to plunder advanced defense technologies in a "

Technology 105

Technology 105

Security Affairs

APRIL 21, 2024

A joint advisory published by CISA, the FBI, Europol, and the Netherlands’ National Cyber Security Centre (NCSC-NL) revealed that since early 2023, Akira ransomware operators received $42 million in ransom payments from more than 250 victims worldwide. concludes the advisory that includes indicators of compromise (IoCs).”

Ransomware 113

Ransomware Encryption Antivirus VPN 113

Security Affairs

OCTOBER 13, 2023

FBI and CISA published a joint Cybersecurity Advisory (CSA) to disseminate IOCs, TTPs, and detection methods associated with AvosLocker ransomware. The joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort aimed at sharing technical details associated with various ransomware operations.

Ransomware 118

Ransomware System Administration Antivirus Malware 118

Penetration Testing

FEBRUARY 20, 2024

Zyxel’s recent security advisory spotlights multiple vulnerabilities present in select firewall and access point models. Vulnerability Breakdown CVE-2023-6397 (Firewalls): Potential denial-of-service... The post Zyxel Security Vulnerabilities: DoS, Command Injection & More appeared first on Penetration Testing.

Penetration Testing 87

Penetration Testing Firewall Risk 87

Bleeping Computer

NOVEMBER 24, 2023

A joint advisory by the National Cyber Security Centre (NCSC) and Korea's National Intelligence Service (NIS) discloses a supply-chain attack executed by North Korean hackers involving the MagicLineThe National Cyber Security Centre (NCSC) and Korea's National Intelligence Service (NIS) warn that the North Korean Lazarus hacking grou [.]

Hacking 82

Hacking 82

Security Boulevard

MARCH 12, 2024

In recent months, a concerning trend has emerged within the healthcare sector: the resurgence of BlackCat ransomware attacks.

Healthcare 111

Healthcare Ransomware Cybersecurity Cyber threats 111

Security Affairs

APRIL 9, 2024

“WebOS runs a service on ports 3000/3001 (HTTP/HTTPS/WSS) which is used by the LG ThinkQ smartphone app to control the TV. ” reads the advisory. The vulnerabilities discovered by the researchers impact WebOS versions 4 through 7 running on LG TVs. At this time, the number of exposed devices decreased to 88,000.

Hacking 128

Hacking Internet Internet Authentication 128

The Hacker News

OCTOBER 13, 2023

That's according to a new joint cybersecurity advisory released by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) detailing the ransomware-as-a-service (RaaS) operation's with some of them detected as recently as May 2023.

Ransomware 114

Ransomware Cybersecurity 114

Graham Cluley

SEPTEMBER 21, 2023

The FBI and US Cybersecurity and Infrastructure Security Agency (CISA) have issued a joint advisory warning organisations about a ransomware-as-a-service operation called "Snatch." Learn more about the threat in my article for the Tripwire State of Security blog.

Ransomware 106

Ransomware Cybersecurity Data breaches Malware 106

Security Affairs

MARCH 25, 2024

CVE-2023-48788 Fortinet FortiClient EMS SQL Injection Vulnerability CVE-2021-44529 Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA) Code Injection Vulnerability CVE-2019-7256 Nice Linear eMerge E3-Series OS Command Injection Vulnerability CVE-2023-48788 (CVSS score 9.3) reads the advisory.

Hacking 120

Hacking Cybersecurity Software Risk 120

Security Boulevard

FEBRUARY 27, 2024

The post Response to CISA Advisory (AA24-057A): SVR Cyber Actors Adapt Tactics for Initial Cloud Access appeared first on AttackIQ. The post Response to CISA Advisory (AA24-057A): SVR Cyber Actors Adapt Tactics for Initial Cloud Access appeared first on AttackIQ.

Government 60

Government 60

The Hacker News

NOVEMBER 16, 2023

The advisory comes courtesy of the U.S. Observed as a ransomware-as-a-service (RaaS) The threat actors behind the Rhysida ransomware engage in opportunistic attacks targeting organizations spanning various industry sectors.

Ransomware 98

Ransomware Cybersecurity 98

Security Boulevard

JANUARY 28, 2023

As part of the FedRAMP Authorization Act, The General Services Administration (GSA) issued a call for nominations for the Federal Secure Cloud Advisory Committee (FSCAC). FSCAC is a statutory advisory committee in accordance with the provisions of […] The post Jan 2023 – FedRAMP, StateRAMP and CMMC 2.0 marketplace.

117

117

Security Affairs

MARCH 2, 2024

US CISA, the FBI, and MS-ISAC issued a joint CSA to warn of attacks involving Phobos ransomware variants observed as recently as February 2024 US CISA, the FBI, and MS-ISAC issued a joint cyber security advisory (CSA) to warn of attacks involving Phobos ransomware variants such as Backmydata , Devos, Eight, Elking, and Faust.

Ransomware 127

Ransomware Backups Healthcare Firewall 127

Security Affairs

MARCH 20, 2024

” reads the advisory. The company also addressed a DoS (Denial of Service) software.amazon.ion:ion-java Dependency issue, tracked as CVE-2024-21634 (CVSS Score of 7.5), that impacts Bamboo Data Center and Server. ” reads the advisory. . ” reads the advisory. and 9.2.12 (LTS).

Hacking 124

Hacking Software Information Security 124

Security Affairs

JULY 7, 2022

US authorities have issued a joint advisory warning of North Korea-linked APTs using Maui ransomware in attacks against the Healthcare sector. Treasury Department issued a joint advisory that warn of North-Korea-linked threat actors using Maui ransomware in attacks aimed at organizations in the Healthcare sector.

Healthcare 126

Healthcare Ransomware Encryption Government 126

Security Affairs

FEBRUARY 3, 2024

” reads the advisory. “This advisory will be edited with more details on 2024/02/15, when admins have been given some time to update, as we think any amount of detail would make it very easy to come up with an exploit.” ” continues the advisory. x versions prior to 4.0.13, 4.1.x x versions prior to 4.2.5.

Accountability 113

Accountability Media Hacking Information Security 113

Identity IQ

DECEMBER 14, 2023

I am honored to be one of the first members of the ITRC’s AIR Advisory Board and contribute to its mission of combatting identity crime,” Scheumack said. “I The establishment of the AIR Advisory Board marks a significant milestone in the ongoing efforts of IDIQ and the ITRC to combat identity crime. “We

Identity Theft 110

Identity Theft Marketing Education Scams 110

Bleeping Computer

MAY 4, 2022

F5 has issued a security advisory warning about a flaw that may allow unauthenticated attackers with network access to execute arbitrary system commands, perform file actions, and disable services on BIG-IP. [.].

144

144

Security Affairs

JANUARY 12, 2024

The vulnerability resides in the devices’ J-Web configuration interfaces, an unauthenticated attacker can exploit the vulnerability to get root privileges or launch denial-of-service (DoS) attacks against unpatched devices. ” reads the advisory published by the vendor. versions earlier than 21.2R3-S7; Junos OS 21.3

Firewall 115

Firewall Hacking Software Information Security 115

Security Affairs

FEBRUARY 14, 2024

The company fixed 13 vulnerabilities in the Adobe Acrobat and Reader software, including arbitrary code execution, application denial of service and memory leak vulnerabilities. ” reads the advisory. “Successful exploitation could lead to arbitrary code execution, application denial-of-service, and memory leak.”

Software 125

Software Authentication Ransomware 125

SecureWorld News

MARCH 26, 2024

Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and Multi-State Information Sharing and Analysis Center (MS-ISAC) have released an updated joint guide to help organizations defend against the persistent threat of distributed denial-of-service (DDoS) attacks.

DDOS 80

DDOS IoT Cyber threats Cybersecurity 80

Security Affairs

JANUARY 15, 2024

SonicWall next-generation firewall (NGFW) series 6 and 7 devices are affected by two unauthenticated denial-of-service vulnerabilities, tracked as CVE-2022-22274 and CVE-2023-0656 , that could potentially lead to remote code execution. ” reads the advisory published by Bishop Fox. ” concludes the report.

Firewall 132

Firewall Hacking Firmware Internet 132

Security Affairs

JANUARY 27, 2023

The CVE-2023-23560 flaw is a server-side request forgery (SSRF) in the Web Services feature of Lexmark printers, it received a CVSS score 9.0. “A Server-Side Request Forgery (SSRF) vulnerability has been identified in the Web Services feature of newer Lexmark devices. ” reads the advisory published by the company.

Firmware 98

Firmware Hacking 98