Aggregator

A vulnerability classified as problematic has been found in Drupal Pages Restriction Access up to 2.0.2. This affects an unknown part. The manipulation leads to incorrect authorization. This vulnerability is uniquely identified as CVE-2024-13302. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Mozilla Thunderbird up to 102.7. It has been classified as critical. This affects an unknown part of the component SpiderMonkey. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2023-25735. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Mozilla Thunderbird up to 102.7. It has been declared as critical. This vulnerability affects unknown code of the component SetupStrokeGeometry. The manipulation leads to Remote Code Execution. This vulnerability was named CVE-2023-25737. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Mozilla Thunderbird up to 102.7. It has been rated as problematic. This issue affects some unknown processing of the component EncodeInputStream. The manipulation leads to out-of-bounds read. The identification of this vulnerability is CVE-2023-25732. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

CrowdStrike is warning that a phishing campaign is impersonating the cybersecurity company in fake job offer emails to trick targets into infecting themselves with a Monero cryptocurrency miner (XMRig). [...]

TM2Sign Data Allegedly for Sale by Threat Actor Sorb

The attack used a stolen remote support SaaS API key to exfiltrate data from workstations in the Treasury Department's Office of Foreign Assets Control.

​BayMark Health Services, North America's largest provider of substance use disorder (SUD) treatment and recovery services, is notifying an undisclosed number of patients that attackers stole their personal and health information in a September 2024 breach. [...]

Deputy Director Reflects on Term and Offers Advice to Successors
From application security to zero trust, it's been a busy four years for the current leaders of the U.S. Cybersecurity and Infrastructure Security Agency. Deputy Director Nitin Natarajan discusses the agency's accomplishments and the threats that await the next administration's cyber leaders.

Also: Penalty on Illegal Cryptomining in Siberia
This week's roundup includes Do Kwon's trial, penalty on a Siberian firm over illegal cryptomining, 2024 drainer attack statistics, U.S. bank regulator's crypto stance, Gemini's CFTC settlement, China's blockchain plans and Hong Kong's push for DLT in banks.

ActZero Purchase Adds Artificial Intelligence, Open Platform and Process Maturity
With its acquisition of ActZero, WatchGuard gains advanced machine learning capabilities and expertise to improve its MDR service. ActZero's mature processes and open platform enable seamless integration of WatchGuard products as well as third-party tools like Microsoft Defender.

Also, Alleged Gravy Analytics Breach Exposes Location Data
This week, a Russian tanker linked to cable sabotage detained in Finland, a claimed Gravy Analytics breach exposed location data, a Mirai-based botnet exploited zero-day flaws, Dell updated framework flaws and a court sentenced a Florida woman for laundering millions in romance scams.

Facebook Unveils Community Notes Program But Has Done Little to Curb Fraud
Meta has decided to end its fact-checking program. Meta CEO Mark Zuckerberg announced significant changes to the company's moderation policies and practices on Tuesday, attributing the shift to a renewed commitment to free speech. Some fear the move will embolden financial scammers.

Deputy Director Reflects on Term and Offers Advice to Successors
From application security to zero trust, it's been a busy four years for the current leaders of the U.S. Cybersecurity and Infrastructure Security Agency. Deputy Director Nitin Natarajan discusses the agency's accomplishments and the threats that await the next administration's cyber leaders.

Also: Penalty on Illegal Cryptomining in Siberia
This week's roundup includes Do Kwon's trial, penalty on a Siberian firm over illegal cryptomining, 2024 drainer attack statistics, U.S. bank regulator's crypto stance, Gemini's CFTC settlement, China's blockchain plans and Hong Kong's push for DLT in banks.

ActZero Purchase Adds Artificial Intelligence, Open Platform and Process Maturity
With its acquisition of ActZero, WatchGuard gains advanced machine learning capabilities and expertise to improve its MDR service. ActZero's mature processes and open platform enable seamless integration of WatchGuard products as well as third-party tools like Microsoft Defender.

Also, Alleged Gravy Analytics Breach Exposes Location Data
This week, a Russian tanker linked to cable sabotage detained in Finland, a claimed Gravy Analytics breach exposed location data, a Mirai-based botnet exploited zero-day flaws, Dell updated framework flaws and a court sentenced a Florida woman for laundering millions in romance scams.

A vulnerability was found in Drupal Print Anything. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to Privilege Escalation. This vulnerability is handled as CVE-2024-13300. The attack can only be done within the local network. There is no exploit available.

A vulnerability was found in Drupal Megamenu Framework. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to Privilege Escalation. This vulnerability is known as CVE-2024-13299. The attack needs to be approached within the local network. There is no exploit available.

A vulnerability was found in Drupal Allow All File Extensions for file fields and classified as critical. This issue affects some unknown processing. The manipulation leads to Privilege Escalation. The identification of this vulnerability is CVE-2024-13311. Access to the local network is required for this attack. There is no exploit available.