Tech Republic Security

AUGUST 8, 2022

The post How older security vulnerabilities continue to pose a threat appeared first on TechRepublic. Security flaws dating back more than 10 years are still around and still pose a risk of being freely exploited, says Rezilion.

Risk 213

Risk 213

Tech Republic Security

APRIL 28, 2023

Europe and Ukraine are reportedly targets in this malware threat. The post Threat actor APT28 targets Cisco routers with an old vulnerability appeared first on TechRepublic. Learn how to protect affected Cisco routers.

Malware 163

Malware Cybersecurity Network Security 163

Heimadal Security

JANUARY 31, 2024

Threat and Vulnerability Management plays a crucial role in safeguarding information systems. It involves identifying, assessing, and mitigating vulnerabilities in software, hardware, and organizational processes.

Cyber threats 71

Cyber threats Software Cybersecurity 71

CyberSecurity Insiders

NOVEMBER 19, 2022

Researchers at Cyber Security Works, Ivanti, and Cyware identify new vulnerabilities, blindspots in popular network scanners, and emerging Advanced Persistent Threat (APT) groups in a joint ransomware report. The total number of ransomware vulnerabilities out there has climbed to 323. New vulnerabilities, new threat actors.

Ransomware 143

Ransomware Government Healthcare Manufacturing 143

Tech Republic Security

DECEMBER 22, 2022

The use of.XLL Excel files by threat actors to infect computers with malware is growing fast. The post Cisco Talos report: Threat actors use known Excel vulnerability appeared first on TechRepublic. Learn more about this relatively new technique and how to protect from it.

Malware 147

Malware Cybersecurity 147

Heimadal Security

MARCH 8, 2024

A new critical-severity vulnerability in TeamCity On-Premises is being exploited by threat actors. CVE-2024-27198 is an authentication bypass vulnerability with a critical severity score of 9.8 It affects all versions through 2023.11.4 of TeamCity’s on-premises edition software. The exploitation appears to be massive.

Authentication 69

Authentication Software Cybersecurity 69

Tech Republic Security

JANUARY 23, 2023

A possible Chinese cyberespionage actor has exploited a FortiOS vulnerability to successfully compromise companies. The post Report: Cyberespionage threat actor exploits CVE-2022-42475 FortiOS vulnerability appeared first on TechRepublic.

Malware 134

Malware 134

Security Boulevard

JANUARY 25, 2024

In recent developments, Cisco has taken swift action to address a critical security flaw impacting Unity Connection, a vulnerability marked as CVE-2024-20272, with a concerning CVSS score of 7.3. This flaw could potentially allow malicious actors to execute arbitrary commands on the system, posing a serious threat to affected users.

Risk 57

Risk Software Cybersecurity Network Security 57

Heimadal Security

JANUARY 5, 2024

The Terrapin attack, a newly identified security threat, jeopardizes nearly 11 million SSH servers that are accessible online. Originating from academic research at Ruhr University Bochum in Germany, this attack specifically targets the SSH protocol, affecting both clients and servers.

Encryption 80

Encryption Cybersecurity 80

Security Boulevard

JANUARY 31, 2024

In recent developments, GitHub, a Microsoft-owned subsidiary, has taken proactive measures to address a security vulnerability potentially exposing credentials within production containers. In this article, we’ll analyze the GitHub vulnerability incident, shedding light on the key rotations and the security landscape surrounding the issue.

Encryption 62

Encryption Cybersecurity 62

Trend Micro

FEBRUARY 26, 2024

This blog entry gives a detailed analysis of these recent ScreenConnect vulnerabilities. We also discuss our discovery of threat actor groups, including Black Basta and Bl00dy Ransomware gangs, that are actively exploiting CVE-2024-1708 and CVE-2024-1709 based on our telemetry.

Ransomware 89

Ransomware 89

CSO Magazine

MAY 31, 2023

Improperly deactivated and unmaintained Salesforce sites are vulnerable to threat actors who can gain access to sensitive business data and personally identifiable information (PII) by simply changing the host header. However, they can still pull fresh data and are easily exploitable by malicious actors, the researchers said.

100

100

Heimadal Security

NOVEMBER 10, 2023

Threat actors are gaining access to business systems in order to steal data and install the ransomware Clop by making use of a zero-day vulnerability in the service management software SysAid. Currently […] The post SysAid Zero-Day Vulnerability Exploited by Threat Actors appeared first on Heimdal Security Blog.

Ransomware 76

Ransomware Software Cybersecurity 76

Security Boulevard

MAY 2, 2023

As a business owner or employee in the UK, it's important to have a comprehensive understanding of the cyber threats, vulnerabilities, and risks that can impact your organisation. The post Threats, Vulnerabilities, and Risks appeared first on Penetration Testing UK - Sencode.

Risk 57

Risk Penetration Testing Cyber threats Cybercrime 57

Digital Shadows

MAY 26, 2023

The post Threat Update: Critical Infrastructure Vulnerability appeared first on ReliaQuest.

98

98

Quick Heal Antivirus

SEPTEMBER 3, 2023

Zero-day vulnerabilities represent an imminent threat to cybersecurity, and in this case, two such vulnerabilities, CVE-2023-38831 and CVE-2023-40477, The post THREAT ADVISORY: Zero-Day Vulnerabilities Detected on WinRAR appeared first on Quick Heal Blog.

Cybersecurity 58

Cybersecurity Antivirus Cyber threats 58

Security Boulevard

JANUARY 26, 2024

In December, the team discussed novel tactics, notable vulnerabilities, current trends, and data leaks. Novel Tactics To kick off the webinar, the Director of Incident Response discussed several novel tactics recently used by threat actors including: Supply chain.

Cybersecurity 57

Cybersecurity 57

Penetration Testing

DECEMBER 5, 2023

The cybersecurity landscape is once again under siege, this time from a critical vulnerability in Adobe ColdFusion, impacting versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier).

Penetration Testing 80

Penetration Testing Cybersecurity 80

Security Boulevard

JULY 15, 2021

Don’t miss this summary of vulnerability trends as well as important information about ransomware and IoT security camera threats. The post New Report: Ransomware, Vulnerabilities and IoT Security Threats appeared first on Nozomi Networks. Nozomi Networks Labs has produced a new OT/IoT security report.

IoT 117

IoT Ransomware 117

Tech Republic Security

MARCH 30, 2022

A vulnerability affecting Google Chrome allows attackers to execute remote code on targeted users. Two North Korean threat actors are using it to attack news outlets, software vendors and fintechs in the U.S.

Software 138

Software 138

Security Boulevard

DECEMBER 12, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has issued a cybersecurity advisory (CSA) concerning a severe threat targeting government agencies. A critical vulnerability in Adobe ColdFusion is being actively exploited by unidentified threat actors, resulting in breaches within federal agencies. Tell me more about.

Government 62

Government Cybersecurity 62

Heimadal Security

APRIL 3, 2023

Threat actors are actively exploiting a high-severity vulnerability discovered in the popular plugin Elementor Pro. Elementor Pro is a WordPress page builder plugin with multiple functions that helps users to build professional-looking websites easily, without the need to know how to code.

Cybersecurity 75

Cybersecurity 75

Heimadal Security

SEPTEMBER 8, 2023

Cybersecurity and Infrastructure Security Agency (CISA) adds a new critical-severity vulnerability to its KEV catalog. Exploiting the vulnerability is possible without authentication and has been leveraged actively by threat actors since at least June.

Authentication 52

Authentication Cybersecurity 52

CyberSecurity Insiders

SEPTEMBER 19, 2022

Indian Computer Emergency Response Team (CERT) has issued a warning about two cyber threats hitting the sub-continent populace active online. The first is related to a Zoom Security vulnerability that left unattended could allow hackers to sneak into the data of Zoom application meeting users.

Malware 106

Malware Computers and Electronics Banking Cyber threats 106

Security Boulevard

MARCH 6, 2024

Perhaps it was the Las Vegas heat, coupled with being exhausted after a long conference, but I managed to drop […] The post Protecting Rugged Gear from UEFI Threats and Secure Boot Vulnerabilities appeared first on Eclypsium | Supply Chain Security for the Modern Enterprise.

44

44

Security Boulevard

MARCH 4, 2024

The post Response to CISA Advisory (AA24-060B): Threat Actors Exploit Multiple Vulnerabilities in Ivanti Connect Secure and Policy Secure Gateways appeared first on AttackIQ.

62

62

Security Boulevard

JUNE 19, 2023

Protect your business from MOVEit Transfer SQL Injection Vulnerabilities with Indusface Threat Coverage. The post Indusface Threat Coverage: MOVEit Transfer SQL Injection Vulnerabilities appeared first on Indusface.

Network Security 52

Network Security 52

CSO Magazine

APRIL 14, 2022

In today’s cybersecurity threat landscape with its ever-growing volume of incidents, it is remarkable to think that proactive threat and vulnerability management remains a challenge for companies to address effectively. To read this article in full, please click here

IoT 107

IoT Technology Internet Internet 107

Security Boulevard

JUNE 21, 2023

The post MOVEIt Vulnerability: A Painful Reminder That Threat Actors Aren’t the Only Ones Responsible for a Data Breach appeared first on SafeBreach. The post MOVEIt Vulnerability: A Painful Reminder That Threat Actors Aren’t the Only Ones Responsible for a Data Breach appeared first on Security Boulevard.

Data breaches 97

Data breaches 97

Bleeping Computer

JULY 7, 2023

Risk-based vulnerability management platforms are better equipped to help orgs prioritize threats for mitigation and ensure complete security. Learn more from Outpost24 about risk-based vulnerability management. [.]

Risk 61

Risk 61

Security Boulevard

FEBRUARY 29, 2024

The post ALPHV Blackcat, GCP-Native Attacks, Bandook RAT, NoaBot Miner, Ivanti Secure Vulnerabilities, and More: Hacker’s Playbook Threat Coverage Round-up: February 2024 appeared first on SafeBreach.

Ransomware 67

Ransomware Malware 67

Quick Heal Antivirus

JUNE 3, 2022

A Zero-day Remote Code Execution Vulnerability with high severity has been identified as CVE-2022-30190 “FOLLINA” in Microsoft Windows. The post Threat Advisory: CVE-2022-30190 ‘Follina’ – Severe Zero-day Vulnerability discovered in MSDT appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.

110

110

Security Affairs

NOVEMBER 22, 2020

A threat actor has published online a list of one-line exploits to steal VPN credentials from over 49,000 vulnerable Fortinet VPNs. A threat actor, who goes online with the moniker “pumpedkicks,” has leaked online a list of exploits that could be exploited to steal VPN credentials from almost 50,000 Fortinet VPN devices.

VPN 137

VPN Banking Government Hacking 137

Security Affairs

SEPTEMBER 11, 2020

Experts reported threat actors are increasingly targeting a recently addressed vulnerability in the WordPress plugin File Manager. Researchers from WordPress security company Defiant observed a surge in the number of attacks targeting a recently addressed vulnerability in the WordPress plugin File Manager. of the popular plugin.

Firewall 118

Firewall Passwords Advertising Malware 118

CSO Magazine

NOVEMBER 18, 2021

Conti ransomware affiliates are using Microsoft Exchange servers to hack into corporate networks using recently disclosed ProxyShell vulnerability exploits. Sophos made the discovery in a customer engagement in which the ransomware gang used Exchange to encrypt a customer’s data.

Ransomware 116

Ransomware Encryption Internet Internet 116

SecureWorld News

NOVEMBER 10, 2022

A new research report has exposed vulnerabilities in the oil and gas industry, specifically to flow computers that regulate and calculate volume and flow rates of substances such as natural gas, crude oils, and other hydrocarbon fluids. The report was issued by Team82, the research arm of Claroty, an industrial security company.

Ransomware 79

Ransomware Cyber Attacks 79

CyberSecurity Insiders

JULY 21, 2021

, an organization that fights for consumer rights has found in its study that lengthy contracts put forward by phone network service providers is also leading to the phase where the phone software and hardware becomes obsolete, making it vulnerable to cyber attacks.

Cyber threats 135

Cyber threats Mobile Manufacturing Retail 135