Aggregator

A vulnerability, which was classified as problematic, has been found in Bit File Manager Plugin 6.0/6.5.5 on WordPress. This issue affects some unknown processing. The manipulation leads to race condition. The identification of this vulnerability is CVE-2024-7627. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in FreeBSD. It has been declared as critical. This vulnerability affects unknown code of the component Guest VM. The manipulation leads to out-of-bounds write. This vulnerability was named CVE-2024-41928. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as problematic was found in Webmin and Virtualmin. Affected by this vulnerability is an unknown functionality of the component UDP Port 10000. The manipulation leads to infinite loop. This vulnerability is known as CVE-2024-45692. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in FreeBSD. Affected by this issue is some unknown functionality of the component libnv. The manipulation leads to incorrect calculation of buffer size. This vulnerability is handled as CVE-2024-45287. The attack needs to be done within the local network. There is no exploit available. It is recommended to apply a patch to fix this issue.

速修复

速修复

A vulnerability classified as critical has been found in Dog Whistle 1.9. This affects an unknown part of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is uniquely identified as CVE-2014-5910. The attack needs to be initiated within the local network. There is no exploit available.

Новый метод атаки превращает безопасные пакеты во вредоносное ПО.

A vulnerability, which was classified as very critical, was found in HP OpenView Network Node Manager 7.53. This affects an unknown part of the file nnmRptConfig.exe. The manipulation of the argument Oid leads to memory corruption. This vulnerability is uniquely identified as CVE-2009-3849. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

SonicWall has issued an urgent advisory regarding a critical vulnerability in its SonicOS management access and SSLVPN. The flaw, identified as CVE-2024-40766, is actively exploited in the wild. It potentially allows unauthorized access to resources and, under certain conditions, causes firewalls to crash. The vulnerability affects SonicWall Gen 5 and Gen 6 devices and Gen […]

The post SonicWall Access Control Vulnerability Exploited in the Wild appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

据BleepingComputer消息，有黑客使用一种假冒的 OnlyFans 工具瞄准其他黑客，声称可以用来帮助窃取用户帐户，但实际上却是用 Lumma信息窃取器对这些黑客发动入侵。 这项由 Veriti Research 发现的现象反映了网络犯罪分子之间并非是统一的”猎食者“身份，彼此之间的背刺时有发生。 这次黑客所利用的OnlyFans 是一个非常受欢迎、基于用户订阅的内容创作平台，创作者可以与订阅者分享视频、图像、消息和直播流，而订阅者则需要支付经常性费用或一次性付款以获得独家内容。鉴于它的受欢迎程度，OnlyFans 帐户经常成为攻击者的目标，试图劫持账户、勒索账户所有者支付赎金，或者干脆泄露私人照片。 黑客论坛上的OnlyFans恶意工具广告 因此，黑客开发了一种能快速验证账户的工具，检查登录信息是否与任何 OnlyFans 账户匹配，以及是否仍然有效，否则，黑客就必须手动测试成千上万个凭证，其过程既不现实又繁琐，导致该计划无法实施。 然而，正是由于该工具由黑客创建并在其他黑客中传播，处于竞争关系的黑客必然在其中留了一手，对其他黑客窃取信息以将自身利益最大化。 Veriti发现的假冒OnlyFans 工具内含有Lumma信息窃取器，有效载荷名为 “brtjgjsefd.exe”，是从 GitHub 存储库中获取并加载到受害者计算机中。Lumma 自 2022 年以来一直以每月 250-1000 美元的价格出租给网络犯罪分子，并通过各种方式传播，包括恶意广告、YouTube 评论、种子文件以及最近的 GitHub 评论。 Lumma 具有创新的规避机制和恢复过期谷歌会话令牌的能力。 它主要用于窃取双因素身份验证代码、加密货币钱包，以及存储在受害者浏览器和文件系统中的密码、cookie 和信用卡。 Lumma 本身也是一个加载器，能够在被入侵系统中引入额外的有效载荷，并执行 PowerShell 脚本。 Veriti 发现，当 Lumma Stealer 有效载荷启动时，它会连接到一个名为 “UserBesty “的 GitHub 账户，幕后黑客利用该账户托管其他恶意有效载荷。 这并不是黑客第一次针对其他网络犯罪分子进行恶意攻击。 2022 年 3 月，黑客利用伪装成破解 RAT 和恶意软件构建工具的剪贴板窃取程序来窃取加密货币。 同年晚些时候，一名恶意软件开发者在自己的恶意软件中设置了后门，以窃取其他黑客的凭证、加密货币钱包和 VPN 账户数据。   转自FreeBuf，原文链接：https://www.freebuf.com/news/410373.html 封面来源于网络，如有侵权请联系删除。

路透社援引知情人士的话报道，高通探讨了收购英特尔部分设计业务的可能性。英特尔正在开源节流，希望剥离和出售部分业务和资产。高通最感兴趣的是芯片巨人的客户端 PC 设计业务，它也在考虑收购英特尔全部的设计部门。知情人士表示，收购英特尔的服务器部门对高通意义不大。高通市值 1840 亿美元，而英特尔市值不到它的一半。知情人士称，过去几个月高通一直在制定收购英特尔部分业务的计划，但尚未敲定。而英特尔目前最有意愿出售的资产是可编程芯片部门 Altera。

Мессенджер обновил политику модерации.

Cequence Security announced a new partnership with Netskope. Through the partnership, Netskope customers can now leverage unique API threat intelligence from the Cequence Unified API Protection (UAP) platform to unlock insights into real-world threats and ultimately strengthen organizational security posture. Cybercriminals increasingly target APIs and deploy automated attacks such as bots, exposing organizations to data breaches, compliance violations, and financial loss. The explosive growth of APIs has created a complex threat landscape, requiring comprehensive solutions … More →

The post Cequence Security partners with Netskope to provide protection for business-critical APIs appeared first on Help Net Security.

一般你和你妈的衣服同时出现时，我都是先洗你的，让她排队去

A vulnerability, which was classified as problematic, was found in B&R Industrial Automation Runtime up to 14.92. Affected is an unknown function of the component FTP Server. The manipulation leads to risky cryptographic algorithm. This vulnerability is traded as CVE-2024-0323. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.10.6. This issue affects the function cifs_free_subrequest of the component SMB Client. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2024-44992. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.6.47/6.10.6. Affected is the function mtk_wed_setup_tc_block_cb. The manipulation leads to use after free. This vulnerability is traded as CVE-2024-44997. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.10.6. This affects the function v3d_csd_job_run. The manipulation leads to out-of-bounds read. This vulnerability is uniquely identified as CVE-2024-44993. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.