Aggregator

致力于第一时间为企业级用户提供权威漏洞情报和有效解决方案。

More than 2.1 million stolen VPN passwords have been compromised by malware in the past year, highlighting a growing risk for unauthorized access to secure networks, according to a Specops Software report.

The post More Than Two Million Stolen VPN Passwords Discovered appeared first on Security Boulevard.

A vulnerability was found in PBLang 4.67.16.a. It has been declared as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument lang leads to path traversal. This vulnerability was named CVE-2007-3096. The attack can be initiated remotely. Furthermore, there is an exploit available.

Security issues stemming from the integration of information technology (IT) and operational technology (OT), could be addressed through artificial intelligence (AI), although the technology could also be leveraged by malicious actors, according to a Cisco study.

The post AI Could Help Resolve IT/OT Integration Security Challenges appeared first on Security Boulevard.

关注高级攻防对抗技术热点，研究对手技术进行高级威胁模拟，研判攻击安全发展方向。

A vulnerability was found in TOTOLINK T10 4.1.8cu.5207. It has been declared as critical. This vulnerability affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument command leads to os command injection. This vulnerability was named CVE-2024-9001. The attack can be initiated remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability was found in Jinan Chicheng Company JFlow 2.0.0. It has been rated as problematic. This issue affects the function AttachmentUploadController of the file /WF/Ath/EntityMutliFile_Load.do of the component Attachment Handler. The manipulation of the argument oid leads to improper access controls. The identification of this vulnerability is CVE-2024-9003. The attack may be initiated remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability, which was classified as critical, was found in Closed-Loop Technology CLESS Server 4.5.2. Affected is an unknown function of the component PHP Handler. The manipulation leads to unrestricted upload. This vulnerability is traded as CVE-2024-40125. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in Tiptel IP 286 2.61.13.10. Affected by this issue is some unknown functionality of the component Web Interface. The manipulation leads to path traversal. This vulnerability is handled as CVE-2024-33109. The attack may be launched remotely. There is no exploit available.

Nearly a third of companies hit by ransomware attacks paid ransoms four or more times in the past year, according to the Semperis 2024 Ransomware Risk report.

The post Companies Often Pay Ransomware Attackers Multiple Times appeared first on Security Boulevard.

Меньше года вредоносной активности может обернуться многолетним сроком заключения.

过去几个月，美国科技行业从业者发现求职的过程比以往任何时候都不顺利。他们曾受到企业的追捧，现在却为一个职位苦苦挣扎。根据 Indeed.com 的数据，自 2020 年 2 月以来，软件开发工作的招聘信息减少了三成。Layoffs.fyi 的数据显示，自今年 1 月以来科技行业裁员约 13.7 万人。科技从业者很多都非常年轻，没有经历本世纪初的互联网泡沫破灭，他们第一次面临找工作的困境。企业的战略也发生了转移，从全力追求增长和需要长时间才可能获利的项目转变到能产生收入的产品和服务上。它们减少了初级职位招聘，削减招聘团队，放弃不怎么盈利的项目和工作岗位。一位最近被裁的 40 岁软件工程师表示，他每申请 100 个工作只获得 2-3 次 面试机会。

A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=update_account. The manipulation of the argument firstname/lastname/email leads to sql injection. This vulnerability was named CVE-2024-9041. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, was found in code-projects Blood Bank Management System 1.0. This affects an unknown part of the component Password Handler. The manipulation leads to cleartext storage in a file or on disk. This vulnerability is uniquely identified as CVE-2024-9040. An attack has to be approached locally. Furthermore, there is an exploit available.

这道题比较有意思，而且因为我对misc并不是很熟悉，发现该题目将flag隐藏在图片的颜色属性，巧妙的跟踪到这些密文位置，拿下题目一血，还是很有参考学习意义的。

Submit #411502 / VDB-278212

Microsoft warns that financially motivated threat actor Vanilla Tempest is using INC ransomware in attacks aimed at the healthcare sector in the U.S. Microsoft Threat Intelligence team revealed that a financially motivated threat actor, tracked as Vanilla Tempest (formerly DEV-0832) is using the INC ransomware for the first time to target the U.S. healthcare sector. “Vanilla […]

Сможет ли наука договориться с Илоном Маском?

Resecurity announced that it has joined the Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. Continue ReadingAs an innovator in cybersecurity, Resecurity brings its expertise in threat intelligence, risk management, and cloud security solutions to the CSA. Resecurity’s platform combines AI-driven threat detection and real-time data analytics, helping organizations mitigate risks in cloud environments. By joining the CSA, Resecurity aims … More →

The post Resecurity joins Cloud Security Alliance to help organizations secure cloud technologies appeared first on Help Net Security.