Aggregator
3 Russian Nationals Indicted for Running Bulletproof Hosting Network Behind $62 Million Cyberattacks
Three Russian nationals and two St. Petersburg-based companies have been indicted in the United States for allegedly operating a bulletproof hosting network that facilitated ransomware, malware, phishing, and other cyberattacks, resulting in over $62 million in losses for victims. The indictment, which was unsealed on July 14 in the Northern District of Ohio, charges Alexander […]
The post 3 Russian Nationals Indicted for Running Bulletproof Hosting Network Behind $62 Million Cyberattacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Multiple Windows RDP Vulnerabilities Allow Attackers to Access Sensitive Data
Microsoft has released security updates to address a series of information disclosure vulnerabilities in the Windows Remote Desktop Protocol (RDP). These vulnerabilities could allow attackers to read sensitive data from system memory during remote sessions. They affect a wide range of supported Windows client and server builds, including Windows 10, Windows 11, and various Windows […]
The post Multiple Windows RDP Vulnerabilities Allow Attackers to Access Sensitive Data appeared first on Cyber Security News.
Microsoft smashes Patch Tuesday record for second successive month
Один клик — тысячи атак. ИИ теперь работает за хакера от начала до конца
CVE-2024-23683 | Artemis Java Test Sandbox up to 1.7.5 sandbox (EUVD-2024-0218)
CVE-2024-23685 | mod-remote-storage up to 1.7.1/2.0.2 hard-coded credentials (GHSA-m8v7-469p-5x89 / EUVD-2024-0371)
CVE-2024-23689 | ClichHouse r2dbc/jdbc/client up to 0.4.5 information exposure (ID 1331 / EUVD-2024-0233)
CVE-2024-23684 | com.upokecenter.cbor up to 4.5.1 DecodeFromBytes algorithmic complexity (GHSA-fj2w-wfgv-mwq6 / EUVD-2024-0367)
CVE-2024-23688 | Consensys Discovery up to 0.4.4 AES Handler/GCM nonce re-use (GHSA-w3hj-wr2q-x83g / EUVD-2024-21150)
CVE-2024-23686 | DependencyCheck up to 9.0.5/9.0.6 on Maven/CLI/Ant Debug Mode log file (GHSA-qqhq-8r2c-c3f5 / EUVD-2024-0347)
CVE-2024-23687 | Folio mod-data-export-spring versions up to 1.5.3/2.0.1 API hard-coded credentials (GHSA-vf78-3q9f-92g3 / EUVD-2024-0316)
CVE-2024-23052 | WuKongOpenSource WukongCRM 72crm_9.0.1_20191202 fastjson parseObject deserialization (ID 28)
CVE-2024-26783 | Linux Kernel up to 6.6.21/6.7.8 vmscan wakeup_kswapd memory corruption (d6159bd4c005/bdd21eed8b72/2774f256e7c0 / Nessus ID 237223)
CVE-2024-21529 | dset up to 3.1.3 prototype pollution (SNYK-JS-DSET-7116691)
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.
- CVE-2023-4346 KNX Association KNX Protocol Connection Authorization Option 1 Overly Restrictive Account Lockout Mechanism Vulnerability
- CVE-2026-46817 Oracle E-Business Suite Improper Privilege Management Vulnerability
These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.
Binding Operational Directive (BOD) 26-04: Prioritizing Security Updates Based on Risk establishes vulnerability management requirements for Federal Civilian Executive Branch (FCEB) agencies. BOD 26-04 reinforces the importance of the KEV Catalog and requires federal agencies to prioritize rapid remediation of high-risk vulnerabilities, specifically those identified by Common Vulnerabilities and Exposures (CVEs) listed in CISA’s KEV Catalog on publicly exposed assets that grant total control of the asset post-exploitation, while deferring action for lower-risk vulnerabilities. BOD 26-04 further establishes basic expectations for when agencies must check whether threat actors compromised the system before the patch was applied.
While BOD 26-04 applies only to FCEB agencies, CISA encourages all organizations to adopt risk-based vulnerability management and prioritize remediation of KEV Catalog vulnerabilities. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.
Aware of an exploited vulnerability not currently listed in the KEV Catalog? Submit it for potential addition through CISA’s KEV Nomination Form. Potential KEV additions must have a CVE ID, evidence of exploitation, and clear mitigation guidance.