Aggregator

via the comic humor & dry wit of Randall Munroe, creator of XKCD

Permalink

The post Randall Munroe’s XKCD ‘Omniroll’ appeared first on Security Boulevard.

Microsoft Incident Response uncovered a novel remote access trojan (RAT) named StilachiRAT, which demonstrates sophisticated techniques to evade detection, persist in the target environment, and exfiltrate sensitive data. This blog primarily focuses on analysis of the WWStartupCtrl64.dll module that contains the RAT capabilities and summarizes the malware’s key behaviors, capabilities, and the potential risk posed to systems and users.

The post StilachiRAT analysis: From system reconnaissance to cryptocurrency theft appeared first on Microsoft Security Blog.

From March 17, Ofcom will enforce rules requiring tech platforms operating in the UK to remove illegal content, including child abuse material

A vulnerability, which was classified as critical, was found in havenweb haven. Affected is the function IndieAuth. The manipulation leads to injection. This vulnerability is traded as CVE-2024-39906. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in janeczku Calibre-Web up to 0.6.21 and classified as problematic. Affected by this vulnerability is the function edit_book_comments. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-39123. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in RuoYi up to 4.7.9 and classified as problematic. Affected by this issue is some unknown functionality of the component File Upload. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-41599. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in Hyland Alfresco 23.2.1-r96. It has been rated as problematic. This issue affects some unknown processing. The manipulation of the argument htmlid leads to cross site scripting. The identification of this vulnerability is CVE-2024-40347. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in BoldGrid Post and Page Builder Plugin up to 1.26.6 on WordPress and classified as problematic. This issue affects some unknown processing of the component File Upload. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-6848. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in ClassCMS 4.5. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/?action=home&do=shop:index&keyword=&kind=all. The manipulation of the argument order leads to cross site scripting. This vulnerability is known as CVE-2024-6932. The attack can be launched remotely. Furthermore, there is an exploit available.

Alleged Sale of 1-Day Remote Code Execution (RCE) Exploit Targeting Microsoft Windows

17 марта Online Safety Act вступил в силу.

Researchers discovered critical vulnerabilities in Kentico’s Xperience CMS that could allow attackers to completely compromise affected systems.  The vulnerabilities, identified as WT-2025-0006, WT-2025-0007, and WT-2025-0011, can be chained together to achieve unauthenticated remote code execution on systems with common configurations. Researchers at watchTowr Labs identified two distinct authentication bypass vulnerabilities and one post-authentication remote code […]

The post Kentico Xperience CMS Authentication Bypass Vulnerability Allow Attackers Execute Arbitrary Code Remotely appeared first on Cyber Security News.

Pavel Durov, founder and CEO of Telegram, announced his return to Dubai on Monday following months of judicial supervision in France as investigations into alleged criminal activities on his messaging platform continue. Durov expressed relief at being back home and gratitude toward the French judiciary for permitting his temporary departure. The investigation stems from accusations […]

The post Telegram CEO Returns to Dubai Amid French Investigation Continues appeared first on Cyber Security News.

TwoNet Targeted the Website of HM Sanchinarro

DarkAtlas researchers have uncovered a direct link between BlackLock and the Eldorado ransomware group, confirming a rebranded identity of the notorious threat actor

Militairen en veteranen met een posttraumatische stressstoornis (PTSS) hebben baat bij traumabehandeling met een virtual reality (VR) bril. Dat blijkt uit een pilotstudie van het Expertisecentrum MGGZ (Militaire Geestelijke Gezondheidszorg). Daaraan namen 16 mensen deel. Gemiddeld gezien namen hun PTSS-klachten af. De resultaten zijn vandaag gepresenteerd in het Centraal Militair Hospitaal in Utrecht.