Aggregator

A vulnerability classified as critical has been found in Apple Mac OS X up to 10.10. Affected is an unknown function of the component IOHIDFamily. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2015-5866. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Apple Mac OS X up to 10.10 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component IOGraphics. The manipulation leads to memory corruption. This vulnerability is known as CVE-2015-5890. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Apple Mac OS X up to 10.10. Affected by this issue is some unknown functionality of the component IOGraphics. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2015-5871. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Apple Mac OS X up to 10.10. This affects an unknown part of the component IOGraphics. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2015-5872. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Apple Mac OS X up to 10.10 and classified as problematic. This vulnerability affects unknown code of the component IOGraphics. The manipulation leads to memory corruption. This vulnerability was named CVE-2015-5873. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.

苹果公司19日发布安全更新，修复了两个被用于攻击Mac用户的安全漏洞，并建议所有用户安装。 苹果在官网发布的安全公告中表示，发现了两个漏洞（CVE-2024-44308、CVE-2024-44309），可能在基于英特尔处理器的Mac系统上“被积极利用”。这类漏洞属于零日漏洞，因为在漏洞被攻击者利用时，苹果尚未意识到它们的存在。 为修复这两个漏洞，苹果发布了一系列软件更新，包括macOS、iOS和iPadOS。 目前尚不清楚针对Mac用户的攻击是由谁发起，也不清楚有多少用户成为目标，或者是否有用户设备已经被成功攻破。这些漏洞由谷歌威胁分析小组报告，该小组专注于调查政府支持的黑客行为和网络攻击。这表明，此次攻击可能涉及某个政府背景的行为者。而政府支持的网络攻击有时会使用商业间谍软件针对目标设备展开行动。 苹果在公告中表示，这些漏洞与WebKit和JavaScriptCore有关。WebKit是Safari浏览器运行网络内容的核心引擎，同时也是恶意攻击者的常见目标。攻击者通常通过利用WebKit引擎中的漏洞，侵入设备的软件系统，进而窃取用户的隐私数据。 安全公告进一步指出，这些漏洞可通过诱使易受攻击的苹果设备处理恶意构造的网络内容（如伪造的网站或电子邮件），触发任意代码执行，从而在目标设备上植入恶意软件。 苹果建议用户尽快更新其iPhone、iPad和Mac设备，以降低安全风险。 苹果生态已成零日攻击高发地带 加上这两个漏洞，苹果在2024年已累计修复了六个零日漏洞。今年的首次修复发生在1月，随后在3月修复了两个漏洞，5月修复了第四个漏洞。 相比2023年修复的20个遭在野利用的零日漏洞，今年的情况有了显著改善。 以下是2023年苹果修复零日漏洞的时间表： 11月修复的两个零日漏洞（CVE-2023-42916和CVE-2023-42917） 10月修复的两个零日漏洞（CVE-2023-42824和CVE-2023-5217） 9月修复的五个零日漏洞（CVE-2023-41061、CVE-2023-41064、CVE-2023-41991、CVE-2023-41992和CVE-2023-41993） 7月修复的两个零日漏洞（CVE-2023-37450和CVE-2023-38606） 6月修复的三个零日漏洞（CVE-2023-32434、CVE-2023-32435和CVE-2023-32439） 5月修复的三个零日漏洞（CVE-2023-32409、CVE-2023-28204和CVE-2023-32373） 4月修复的两个零日漏洞（CVE-2023-28206和CVE-2023-28205） 2月修复的另一个WebKit零日漏洞（CVE-2023-23529）。       转自安全内参，原文链接：https://www.secrss.com/articles/72598 封面来源于网络，如有侵权请联系删除

A vulnerability, which was classified as problematic, was found in mra13 Simple Membership Plugin up to 4.5.5 on WordPress. This affects an unknown part. The manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2024-11088. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in cayenne Anonymous Restricted Content Plugin up to 1.6.5 on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to information disclosure. This vulnerability is handled as CVE-2024-11089. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in Automatic Bug Reporting Tool. It has been rated as problematic. This issue affects some unknown processing of the file /var/tmp/abrt/*/maps. The manipulation leads to link following. The identification of this vulnerability is CVE-2015-3315. The attack needs to be approached locally. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

The U.S. Justice Department charged five suspects linked to the Scattered Spider cybercrime gang with wire fraud conspiracy. The U.S. Justice Department charged five alleged members of the cybercrime gang Scattered Spider (also known as UNC3944, 0ktapus) with conspiracy to commit wire fraud. “Law enforcement today unsealed criminal charges against five defendants who allegedly targeted employees of […]

An analysis of the websites belonging to companies that served as a front for getting North Korean IT workers remote jobs with businesses worldwide has revealed an active network of such companies originating in China. Unearthing North Korean IT front companies US authorities have been warning about North Korean IT workers’ tactics to bypass sanctions for a number of years, and have repeatedly seized website domains that looked like they belong to legitimate IT services … More →

The post Active network of North Korean IT front companies exposed appeared first on Help Net Security.

4G/5G fixed wireless access (FWA) represents a major growth opportunity for mobile network operators (MNOs) because they bring more traffic, new services, new subscribers, and, importantly, new revenue streams. According to Ericsson, there will be 330 million FWA 5G connections by 2029. With all this potential new...

A vulnerability classified as critical was found in ntopng 6.2. Affected by this vulnerability is the function Flow::dissectMDNS. The manipulation leads to heap-based buffer overflow. This vulnerability is known as CVE-2024-53426. The attack can only be initiated within the local network. There is no exploit available.

A vulnerability classified as problematic has been found in Kion Computer KION Exchange Programs Software up to 21.11.2024. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-7130. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in Teknogis Informatics Closed Circuit Vehicle Tracking Software up to 21.11.2024. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to sql injection hibernate. The identification of this vulnerability is CVE-2024-7026. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in Assimp 5.4.3. It has been declared as critical. This vulnerability affects the function SkipSpacesAndLineEnd. The manipulation leads to heap-based buffer overflow. This vulnerability was named CVE-2024-53425. Access to the local network is required for this attack to succeed. There is no exploit available.

The BianLian ransomware group has shifted exclusively to exfiltration-based extortion and is deploying multiple new TTPs for initial access and persistence

Operational Technology (OT) and Industrial Control Systems (ICS) are critical components of many industries, especially those within the 16 critical […]

The post Building and Enhancing OT/ICS Security Programs Through Governance, Risk, and Compliance (GRC) appeared first on Security Boulevard.