Aggregator

A vulnerability classified as critical has been found in Pictures Rating. Affected is an unknown function of the file index.php. The manipulation of the argument msgid leads to sql injection. This vulnerability is traded as CVE-2007-3881. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Интервью с автором книги “Кокетливый интеллект”.

Threat actors with ties to North Korea have been observed leveraging two new malware strains dubbed KLogEXE and FPSpy. The activity has been attributed to an adversary tracked as Kimsuky, which is also known as APT43, ARCHIPELAGO, Black Banshee, Emerald Sleet (formerly Thallium), Sparkling Pisces, Springtail, and Velvet Chollima. "These samples enhance Sparkling Pisces' already extensive arsenal

Imagine trying to find a needle in a haystack, but the haystack is on fire, and there are a million other needles you also need to find. That's what dealing with security alerts can feel like. SIEM was supposed to make this easier, but somewhere along the way, it became part of the problem. Too many alerts, too much noise, and not enough time to actually stop threats. It's time for a change.

Сможет ли директор компании сесть в тюрьму за плохое поведение цифрового ассистента?

Google’s decision to write new code into Android’s codebase in Rust, a memory-safe programming language, has resulted in a significant drop in memory safety vulnerabilities, despite old code (written in C/C++) not having been rewritten. The number of memory safety vulnerabilities found in the Android codebase per year (Source: Google) Android evolves, and has fewer memory safety vulnerabilities “The Android team began prioritizing transitioning new development to memory-safe languages around 2019. This decision was driven … More →

The post The number of Android memory safety vulnerabilities has tumbled, and here’s why appeared first on Help Net Security.

HPE Aruba Networking has fixed three critical vulnerabilities in the Command Line Interface (CLI) service of its Aruba Access Points, which could let unauthenticated attackers gain remote code execution on vulnerable devices. [...]

自马斯克（Elon Musk）于 2022 年收购其前身 Twitter 以来，X 发布了首份透明度报告。Twitter 以前每半年发布一份透明度报告，最后一份报告有 50 页长，而 X

A vulnerability, which was classified as problematic, has been found in Datadynamics ActiveBar 3.1. Affected by this issue is some unknown functionality of the file actbar3.ocx of the component ActiveX Control. The manipulation of the argument first leads to Remote Code Execution. This vulnerability is handled as CVE-2007-3883. The attack may be launched remotely. Furthermore, there is an exploit available.

胡金鱼

WordPress блокирует крупного хостера, оставив пользователей без обновлений.

Cisco released its September 2024 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication to address vulnerabilities in IOS and IOS XE. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.  

CISA encourages users and administrators to review the following and apply the necessary updates: 

• September 2024 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication

CISA released five Industrial Control Systems (ICS) advisories on September 26, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

• ICSA-24-270-01 Advantech ADAM-5550
• ICSA-24-270-02 Advantech ADAM-5630
• ICSA-24-270-03 Atelmo Atemio AM 520 HD Full HD Satellite Receiver
• ICSA-24-270-04 goTenna Pro X and Pro X2
• ICSA-24-270-05 goTenna Pro ATAK Plugin

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

Today, the Australian Signals Directorate Australian Cyber Security Centre (ASD ACSC), the Cybersecurity and Infrastructure Security Agency (CISA), and other U.S. and international partners released the joint guide Detecting and Mitigating Active Directory Compromises. This guide informs organizations of recommended strategies to mitigate common techniques used by malicious actors to compromise Active Directory.

Active Directory is the most widely used authentication and authorization solution in enterprise information technology (IT) networks globally. Malicious actors routinely target Active Directory as part of efforts to compromise enterprise IT networks by escalating privileges and targeting the highest confidential user objects.  

Responding to and recovering from malicious activity involving Active Directory can be consuming, costly, and disruptive. CISA encourages organizations review the guidance and implement the recommended mitigations to improve Active Directory security.

To learn more about taking a top-down approach to developing secure products, visit CISA’s Secure by Design webpage. 

胡金鱼

Компания готова к переговорам с хакерами и предлагает вознаграждение.

A vulnerability has been found in Red Hat Enterprise Virtualization 4.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component ovirt-engine-provisiondb. The manipulation leads to sensitive information in log files (Log). This vulnerability is known as CVE-2016-5432. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Apple visionOS. This vulnerability affects unknown code of the component Bluetooth. The manipulation leads to improper authorization. This vulnerability was named CVE-2024-44191. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Apple iOS and iPadOS. This issue affects some unknown processing of the component Bluetooth. The manipulation leads to improper authorization. The identification of this vulnerability is CVE-2024-44191. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.