Aggregator

The threat actors managed to gain access to Sen. Ben Cardin (D-Md.) by posing as a Ukrainian official, before quickly being outed.

By combining agility with compliance, and security with accessibility, businesses will treat their data as a well-prepared traveler, ready for any adventure.

Storm-0501, an affiliate of several high-profile ransomware-as-a-service outfits, has been spotted compromising targets’ cloud environments and on-premises systems. “Storm-0501 is the latest threat actor observed to exploit weak credentials and over-privileged accounts to move from organizations’ on-premises environment to cloud environments. They stole credentials and used them to gain control of the network, eventually creating persistent backdoor access to the cloud environment and deploying ransomware to the on-premises,” Microsoft shared last week. Common tactics and … More →

The post Ransomware attackers hop from on-premises systems to cloud to compromise Microsoft 365 accounts appeared first on Help Net Security.

Community Clinic of Maui experienced a data breach impacting over 120,000 people following a LockBit ransomware attack. In May, the Community Clinic of Maui experienced a major IT outage that impacted thousands of patients following a cyber attack. In June, the Lockbit ransomware gang took credit for the attack. The Community Clinic of Maui, also known as Mālama […]

A vulnerability was found in Linux Kernel up to 6.10.2. It has been rated as critical. This issue affects the function enable_phantom_plane of the component AMD Display. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2024-43827. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.1.102/6.6.43/6.10.2. Affected is the function drm_cvt_mode. The manipulation leads to null pointer dereference. This vulnerability is traded as CVE-2024-43829. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in alfio-event alf.io up to 2.0-M4. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Content Security Policy Handler. The manipulation leads to escaping of output. This vulnerability is handled as CVE-2024-45299. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Vonets VAP11G-300 3.3.23.6.9 and classified as critical. Affected by this issue is the function SystemCommand. The manipulation leads to command injection. This vulnerability is handled as CVE-2024-46329. Access to the local network is required for this attack to succeed. There is no exploit available.

A vulnerability was found in Vonets VAP11G-300 3.3.23.6.9. It has been classified as critical. This affects the function iptablesWebsFilterRun. The manipulation leads to command injection. This vulnerability is uniquely identified as CVE-2024-46330. The attack needs to be approached within the local network. There is no exploit available.

A vulnerability was found in Vonets VAP11G-300 3.3.23.6.9. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to hard-coded credentials. This vulnerability was named CVE-2024-46328. The attack can only be done within the local network. There is no exploit available.

A vulnerability was found in Vonets VAP11G-300 3.3.23.6.9. It has been rated as critical. This issue affects the function Http_handle. The manipulation leads to path traversal. The identification of this vulnerability is CVE-2024-46327. The attack can only be initiated within the local network. There is no exploit available.

A vulnerability was found in Android Excellence 1.4.1 and classified as critical. This issue affects some unknown processing of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. The identification of this vulnerability is CVE-2014-7111. Access to the local network is required for this attack. There is no exploit available.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.10.9. Affected is an unknown function of the component btrfs. The manipulation leads to improper update of reference count. This vulnerability is traded as CVE-2024-46751. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.10.8. It has been declared as critical. Affected by this vulnerability is the function otg_master of the component AMD Display. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2024-46727. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Apple watchOS up to 2.2.1. This issue affects some unknown processing of the component Kernel. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2016-1865. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in NeoRecruit 1.4 on Joomla. This affects an unknown part of the file index.php. The manipulation of the argument id leads to sql injection. This vulnerability is uniquely identified as CVE-2007-4506. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Hold onto your hats, folks, because the cybersecurity world is anything but quiet! Last week, we dodged a bullet when we discovered vulnerabilities in CUPS that could've opened the door to remote attacks. Google's switch to Rust is paying off big time, slashing memory-related vulnerabilities in Android. But it wasn't all good news – Kaspersky's forced exit from the US market left users with more

A vulnerability was found in Vercom Redlink SDK up to 1.13. It has been classified as problematic. Affected is an unknown function. The manipulation leads to improper control of resource identifiers. This vulnerability is traded as CVE-2024-6051. Local access is required to approach this attack. There is no exploit available.