Aggregator

Cybersecurity researchers have uncovered a new cryptojacking campaign targeting the Docker Engine API with the goal of co-opting the instances to join a malicious Docker Swarm controlled by the threat actor. This enabled the attackers to "use Docker Swarm's orchestration features for command-and-control (C2) purposes," Datadog researchers Matt Muir and Andy Giron said in an analysis. The attacks

A CVSS score 3.3 AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N severity vulnerability discovered by 'Rocco Calvi (@TecR0c) with TecSecurity' was reported to the affected vendor on: 2024-10-01, 62 days ago. The vendor is given until 2025-01-29 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Rocco Calvi (@TecR0c) with TecSecurity' was reported to the affected vendor on: 2024-10-01, 30 days ago. The vendor is given until 2025-01-29 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Anonymous' was reported to the affected vendor on: 2024-10-01, 62 days ago. The vendor is given until 2025-01-29 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Rocco Calvi (@TecR0c) with TecSecurity' was reported to the affected vendor on: 2024-10-01, 62 days ago. The vendor is given until 2025-01-29 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.0 AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Peter Girnus - Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-10-01, 62 days ago. The vendor is given until 2025-01-29 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 3.3 AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N severity vulnerability discovered by 'Rocco Calvi (@TecR0c) with TecSecurity' was reported to the affected vendor on: 2024-10-01, 62 days ago. The vendor is given until 2025-01-29 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Rocco Calvi (@TecR0c) with TecSecurity' was reported to the affected vendor on: 2024-10-01, 30 days ago. The vendor is given until 2025-01-29 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 3.3 AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N severity vulnerability discovered by 'Rocco Calvi (@TecR0c) with TecSecurity' was reported to the affected vendor on: 2024-10-01, 62 days ago. The vendor is given until 2025-01-29 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Rocco Calvi (@TecR0c) with TecSecurity' was reported to the affected vendor on: 2024-10-01, 30 days ago. The vendor is given until 2025-01-29 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

Hacktivism-related DDoS attacks have risen 70% in the region, most often targeting the public sector, while stolen data and access offers dominate the Dark Web.

A vulnerability classified as problematic was found in Simongibson ASP Site Search SearchSimon Lite 1.0. This vulnerability affects unknown code of the file filename.asp. The manipulation of the argument QUERY leads to cross site scripting. This vulnerability was named CVE-2007-5625. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in jeanmarc77 123solar up to 1.8.4.5. It has been rated as critical. This issue affects some unknown processing of the file /admin/admin_invt2.php. The manipulation of the argument PROTOCOLx leads to file inclusion. The identification of this vulnerability is CVE-2024-9275. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in HuankeMao SCRM up to 0.0.3. Affected by this issue is the function upload_domain_verification_file of the file WxkConfig.php of the component Administrator Backend. The manipulation of the argument domain_verification_file leads to unrestricted upload. This vulnerability is handled as CVE-2024-9278. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic was found in Apple Mac OS X up to 10.11.5. Affected by this vulnerability is an unknown functionality of the component Sandbox Profiles. The manipulation leads to improper input validation. This vulnerability is known as CVE-2016-4594. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in BitchX 1.1-final. Affected by this vulnerability is an unknown functionality. The manipulation of the argument MODE leads to memory corruption. This vulnerability is known as CVE-2007-4584. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to disable the affected component.

Like many large-scale network security projects, microsegmentation can seem complex, time-consuming, and expensive. It involves managing intricate details about inter-device service connectivity. One web server should connect to specific databases but not to others, or load balancers should connect to some web servers while restricting connections to others. Managing all these connections can seem overwhelming. A software approach to network microsegmentation is the best way to increase network resilience against both external security breaches and … More →

The post 3 easy microsegmentation projects appeared first on Help Net Security.

A vulnerability was found in Apple iOS up to 9.3.2. It has been rated as problematic. This issue affects some unknown processing of the component Sandbox Profiles. The manipulation leads to improper input validation. The identification of this vulnerability is CVE-2016-4594. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in PHP 5.2.0. Affected is the function iis_getservicestate in the library php_iisfunc.dll. The manipulation of the argument ServiceId leads to memory corruption. This vulnerability is traded as CVE-2007-4586. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

In this Help Net Security interview, Omer Cohen, Chief Security Officer at Descope, discusses the impact of identity federation on organizational security and user experience. He explains how this approach streamlines credential management and enhances security by leveraging trusted identity providers while simplifying the login process. Cohen further explores the common protocols and challenges associated with implementing identity federation, emphasizing the need for effective trust relationships and compatibility among various systems. What are some key … More →

The post Reducing credential complexity with identity federation appeared first on Help Net Security.