Aggregator

CVE-2022-41317 | Squid Web Proxy up to 4.17/5.6 Internal URL exposure of sensitive information due to incompatible policies (GHSA-rcg9-7fqm-83mq / Nessus ID 211262)

Vuldb Updates
4 months 3 weeks ago
A vulnerability was found in Squid Web Proxy up to 4.17/5.6. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Internal URL Handler. The manipulation leads to exposure of sensitive information due to incompatible policies. This vulnerability is known as CVE-2022-41317. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2022-37706 | Enlightenment up to 0.25.3 enlightenment_sys path traversal (EDB-51180 / Nessus ID 211171)

Vuldb Updates
4 months 3 weeks ago
A vulnerability was found in Enlightenment up to 0.25.3. It has been declared as critical. This vulnerability affects unknown code of the component enlightenment_sys. The manipulation leads to path traversal: '/../filedir'. This vulnerability was named CVE-2022-37706. The attack needs to be approached locally. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

主动防御策略结合隐私保护与运维风险管理,构建多方位安全体系,提升数据安全与合规性。|总第284周

君哥的体历
4 months 3 weeks ago
本期周报简介:1、在甲方安全中,如何实施主动防御措施以提升整体安全防护水平? 2、发现生产服务器配置代理上网时,应采取哪些步骤进行处理,以确保数据安全与合规性? 3、面对项目组或运维方对安全整改的抵触情绪,哪些有效策略可以帮助推进整改工作?

主动防御策略结合隐私保护与运维风险管理,构建多方位安全体系,提升数据安全与合规性。|总第284周

君哥的体历
4 months 3 weeks ago
本期周报简介:1、在甲方安全中,如何实施主动防御措施以提升整体安全防护水平? 2、发现生产服务器配置代理上网时,应采取哪些步骤进行处理,以确保数据安全与合规性? 3、面对项目组或运维方对安全整改的抵触情绪,哪些有效策略可以帮助推进整改工作?

Schools and Colleges Emerges as a Prime Target for Threat Actors

Cyber Security News
4 months 3 weeks ago

Educational institutions worldwide are facing an unprecedented wave of sophisticated cyber attacks, with the education sector ranked as the third-most targeted industry in Q2 2024, according to Microsoft. This alarming trend reveals a strategic shift in threat actors’ focus, as they increasingly exploit the unique vulnerabilities inherent to academic environments. Between April and September 2024, […]

The post Schools and Colleges Emerges as a Prime Target for Threat Actors appeared first on Cyber Security News.

Tushar Subhra Dutta

Stealthy Rootkit-Like Malware Known as BPFDoor Using Reverse Shell to Dig Deeper into Compromised Networks

Cyber Security News
4 months 3 weeks ago

A sophisticated backdoor malware known as BPFDoor has been actively targeting organizations across Asia, the Middle East, and Africa, leveraging advanced stealth techniques to evade detection. This Linux backdoor utilizes Berkeley Packet Filtering (BPF) technology to monitor network traffic at the kernel level, allowing it to remain hidden from conventional security scans while maintaining persistent […]

The post Stealthy Rootkit-Like Malware Known as BPFDoor Using Reverse Shell to Dig Deeper into Compromised Networks appeared first on Cyber Security News.

Tushar Subhra Dutta

CVE-2006-5645 | Sophos Anti-Virus up to 6.0.4 CHM Archive resource management (EDB-2912 / BID-20816)

Vuldb Updates
4 months 3 weeks ago
A vulnerability was found in Sophos Anti-Virus up to 6.0.4 and classified as critical. Affected by this issue is some unknown functionality of the component CHM Archive Handler. The manipulation leads to improper resource management. This vulnerability is handled as CVE-2006-5645. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

Possible Russian Hackers Targeted UK Ministry of Defense

BankInfoSecurity.com
4 months 3 weeks ago
Spear-Phishing Campaign Used RomCom Malware Variant
A phishing campaign wielding malware previously associated with Russian-speaking hackers targeted the U.K. Ministry of Defense in late 2024. It is unclear if the campaign is tied to a data leak of 600 armed personnel, civil servants, and defense contractors reported late last year.

RSAC Conference 2025 Aims to Accelerate Cyber Innovation

BankInfoSecurity.com
4 months 3 weeks ago
Event to Feature Innovation Sandbox 20-Year Anniversary, DARPA, Hacking Sessions
RSAC Conference brings together thousands of cybersecurity professionals with one goal: finding innovative ways to defend enterprises. This year for the event's annual Innovation Sandbox, the stakes couldn't be bigger. This year, leading-edge projects will receive $5 million in investment funding.

Ransomware Attack Disrupts Global Dialysis Provider DiVita

BankInfoSecurity.com
4 months 3 weeks ago
Company Files Report With SEC About Incident Discovered Over the Weekend
Denver-based DaVita Inc., which runs more than 3,100 dialysis and other kidney care facilities in the U.S. and in 13 other countries, reported to the U.S. Securities and Exchange Commission that a ransomware attack over the weekend is disrupting some of its operations.

Fraud in Your Inbox: Email Is Still the Weakest Link

BankInfoSecurity.com
4 months 3 weeks ago
At-Bay Cyber Insurance Claims Report Finds 83% of Financial Fraud Starts With Email
Financial fraud remains the leading driver of cyberinsurance claims, with 83% of cases traced back to email-based attacks. Common tactics used to deceive employees include wiring funds to fraudulent accounts, generative AI-crafted emails, executive and vendor impersonation and BEC scams.

CVE-2022-42898 | Samba up to 4.15.11/4.16.6/4.17.2 on 32-bit Kerberos Library/AD DC integer overflow (Nessus ID 207970)

Vuldb Updates
4 months 3 weeks ago
A vulnerability was found in Samba up to 4.15.11/4.16.6/4.17.2 on 32-bit. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Kerberos Library/AD DC. The manipulation leads to integer overflow. This vulnerability is known as CVE-2022-42898. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Managed ad