Aggregator
【数字取证之常用工具】
1 year 5 months ago
SecWiki News 2025-02-11 Review
1 year 5 months ago
SonicWall firewall exploit lets hackers hijack VPN sessions, patch now
1 year 5 months ago
Security researchers at Bishop Fox have published complete exploitation details for the CVE-2024-53704 vulnerability that allows bypassing the authentication mechanism in certain versions of the SonicOS SSLVPN application. [...]
Bill Toulas
Data Leaks Happen Most Often in These States — Here's Why
1 year 5 months ago
State-led data privacy laws and commitment to enforcement play a major factor in shoring up business data security, an analysis shows.
Becky Bracken, Senior Editor, Dark Reading
Phobos Ransomware Affiliates Arrested in Global Crackdown
1 year 5 months ago
Phobos Ransomware Affiliates Arrested in Global Crackdown
Dark Web Informer - Cyber Threat Intelligence
期刊征文 | 网络攻击分析与研判
1 year 5 months ago
US indicts 8Base ransomware operators for Phobos encryption attacks
1 year 5 months ago
The U.S. Justice Department announced the names of two Phobos ransomware affiliates arrested yesterday in Thailand, charging them on 11 counts due to their involvement in more than a thousand cyberattacks. [...]
Bill Toulas
Progress Software fixed multiple high-severity LoadMaster flaws
1 year 5 months ago
Progress Software fixed multiple vulnerabilities in its LoadMaster software, which could be exploited to execute arbitrary system commands. Progress Software has addressed multiple high-severity security vulnerabilities (CVE-2024-56131, CVE-2024-56132, CVE-2024-56133, CVE-2024-56134, CVE-2024-56135) in its LoadMaster software. Progress Software’s LoadMaster is a high-performance load balancer and application delivery controller (ADC) designed to optimize the availability, security, and performance of […]
Pierluigi Paganini
Мечта хакеров: как CVE-2024-52875 стала идеальным инструментом для кибератак
1 year 5 months ago
Всего одна брешь в системе – и тысячи сетей становятся лёгкой добычей.
Lanvin Claims to have Leaked the Data of Taobento
1 year 5 months ago
Lanvin Claims to have Leaked the Data of Taobento
Dark Web Informer - Cyber Threat Intelligence
CVE-2024-47002 | Observium CE 24.4.13528 VLAN Management cross site scripting (TALOS-2024-2091)
1 year 5 months ago
A vulnerability was found in Observium CE 24.4.13528. It has been rated as problematic. This issue affects some unknown processing of the component VLAN Management. The manipulation leads to cross site scripting.
The identification of this vulnerability is CVE-2024-47002. The attack may be initiated remotely. There is no exploit available.
vuldb.com
CVE-2024-45061 | Observium CE 24.4.13528 Weather Map Editor cross site scripting (TALOS-2024-2092)
1 year 5 months ago
A vulnerability classified as problematic has been found in Observium CE 24.4.13528. Affected is an unknown function of the component Weather Map Editor. The manipulation leads to cross site scripting.
This vulnerability is traded as CVE-2024-45061. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-47140 | Observium CE 24.4.13528 add_alert_check cross site scripting (TALOS-2024-2090)
1 year 5 months ago
A vulnerability classified as problematic was found in Observium CE 24.4.13528. Affected by this vulnerability is the function add_alert_check. The manipulation leads to cross site scripting.
This vulnerability is known as CVE-2024-47140. The attack can be launched remotely. There is no exploit available.
vuldb.com
安全预警 - 华为产品存在七层HTTP Chunked报文解析漏洞
1 year 5 months ago
安全预警 - 华为产品存在七层HTTP Chunked报文解析漏洞
1 year 5 months ago
Fog
1 year 5 months ago
cohenido
Fog
1 year 5 months ago
cohenido
Microsoft, FortiOS, 7-Zip: восемь критических багов парализуют системы
1 year 5 months ago
Февральский список угроз.
CVE-2024-33659 | AMI AptioV up to BKS_5.38 BIOS input validation
1 year 5 months ago
A vulnerability has been found in AMI AptioV up to BKS_5.38 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component BIOS. The manipulation leads to improper input validation.
This vulnerability is known as CVE-2024-33659. It is possible to launch the attack on the local host. There is no exploit available.
vuldb.com