🕴 Western Digital Hackers Demand 8-Figure Ransom Payment for Data 🕴
📖 Read
via "Dark Reading".
Western Digital has yet to comment on claims that the breach reported earlier this month led to data being stolen.📖 Read
via "Dark Reading".
Dark Reading
Western Digital Hackers Demand 8-Figure Ransom Payment for Data
Western Digital has yet to comment on claims that the breach reported earlier this month led to data being stolen.
‼ CVE-2022-47501 ‼
📖 Read
via "National Vulnerability Database".
Arbitrary file reading vulnerability in Apache Software Foundation Apache OFBiz when using the Solr plugin. This is a pre-authentication attack. This issue affects Apache OFBiz: before 18.12.07.📖 Read
via "National Vulnerability Database".
🕴 Security Is a Revenue Booster, Not a Cost Center 🕴
📖 Read
via "Dark Reading".
Focusing on what customers and partners need from a company can help CISOs show the real financial benefits of improving cybersecurity.📖 Read
via "Dark Reading".
Dark Reading
Security Is a Revenue Booster, Not a Cost Center
Focusing on what customers and partners need from a company can help CISOs show the real financial benefits of improving cybersecurity.
🕴 Software-Dependency Data Delivers Security to Developers 🕴
📖 Read
via "Dark Reading".
Google has opened up its software-dependency database, adding to the security data available to developers and tool makers. Now developers need to use it.📖 Read
via "Dark Reading".
Dark Reading
Software-Dependency Data Delivers Security to Developers
Google has opened up its software-dependency database, adding to the security data available to developers and toolmakers. Now developers need to use it.
🕴 Why xIoT Devices Are Cyberattackers' Gateway Drug for Lateral Movement 🕴
📖 Read
via "Dark Reading".
Detailing how extended IoT (xIoT) devices can be used at scale by attackers to establish persistence across networks and what enterprises should start doing about the risk.📖 Read
via "Dark Reading".
Dark Reading
Why xIoT Devices Are Cyberattackers' Gateway Drug for Lateral Movement
Detailing how extended IoT (xIoT) devices can be used at scale by attackers to establish persistence across networks and what enterprises should start doing about the risk.
‼ CVE-2023-29067 ‼
📖 Read
via "National Vulnerability Database".
A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 could lead to memory corruption vulnerability by write access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27915 ‼
📖 Read
via "National Vulnerability Database".
A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 could lead to memory corruption vulnerability by read access violation. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-29529 ‼
📖 Read
via "National Vulnerability Database".
matrix-js-sdk is the Matrix Client-Server SDK for JavaScript and TypeScript. An attacker present in a room where an MSC3401 group call is taking place can eavesdrop on the video and audio of participants using matrix-js-sdk, without their knowledge. To affected matrix-js-sdk users, the attacker will not appear to be participating in the call. This attack is possible because matrix-js-sdk's group call implementation accepts incoming direct calls from other users, even if they have not yet declared intent to participate in the group call, as a means of resolving a race condition in call setup. Affected versions do not restrict access to the user's outbound media in this case. Legacy 1:1 calls are unaffected. This is fixed in matrix-js-sdk 24.1.0. As a workaround, users may hold group calls in private rooms where only the exact users who are expected to participate in the call are present.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27914 ‼
📖 Read
via "National Vulnerability Database".
A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 can be used to write beyond the allocated buffer causing a Stack Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or read sensitive data or execute arbitrary code in the context of the current process.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27912 ‼
📖 Read
via "National Vulnerability Database".
A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 can force an Out-of-Bound Read. A malicious actor can leverage this vulnerability to cause a crash or read sensitive data or execute arbitrary code in the context of the current process.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-29018 ‼
📖 Read
via "National Vulnerability Database".
The OpenFeature Operator allows users to expose feature flags to applications. Assuming the pre-existence of a vulnerability that allows for arbitrary code execution, an attacker could leverage the lax permissions configured on `open-feature-operator-controller-manager` to escalate the privileges of any SA in the cluster. The increased privileges could be used to modify cluster state, leading to DoS, or read sensitive data, including secrets. Version 0.2.32 mitigates this issue by restricting the resources the `open-feature-operator-controller-manager` can modify.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-29013 ‼
📖 Read
via "National Vulnerability Database".
Traefik (pronounced traffic) is a modern HTTP reverse proxy and load balancer for deploying microservices. There is a vulnerability in Go when parsing the HTTP headers, which impacts Traefik. HTTP header parsing could allocate substantially more memory than required to hold the parsed headers. This behavior could be exploited to cause a denial of service. This issue has been patched in versions 2.9.10 and 2.10.0-rc2.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2073 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability was found in Campcodes Online Traffic Offense Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /classes/Login.php. The manipulation of the argument password leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-226051.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-29199 ‼
📖 Read
via "National Vulnerability Database".
There exists a vulnerability in source code transformer (exception sanitization logic) of vm2 for versions up to 3.9.15, allowing attackers to bypass `handleException()` and leak unsanitized host exceptions which can be used to escape the sandbox and run arbitrary code in host context. A threat actor can bypass the sandbox protections to gain remote code execution rights on the host running the sandbox. This vulnerability was patched in the release of version `3.9.16` of `vm2`.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2033 ‼
📖 Read
via "National Vulnerability Database".
Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)📖 Read
via "National Vulnerability Database".
‼ CVE-2023-29194 ‼
📖 Read
via "National Vulnerability Database".
Vitess is a database clustering system for horizontal scaling of MySQL. Users can either intentionally or inadvertently create a keyspace containing `/` characters such that from that point on, anyone who tries to view keyspaces from VTAdmin will receive an error. Trying to list all the keyspaces using `vtctldclient GetKeyspaces` will also return an error. Note that all other keyspaces can still be administered using the CLI (vtctldclient). This issue is fixed in version 16.0.1. As a workaround, delete the offending keyspace using a CLI client (vtctldclient).📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27913 ‼
📖 Read
via "National Vulnerability Database".
A maliciously crafted X_B file when parsed through Autodesk® AutoCAD® 2023 can be used to cause an Integer Overflow. A malicious actor can leverage this vulnerability to cause a crash or read sensitive data, or execute arbitrary code in the context of the current process.📖 Read
via "National Vulnerability Database".
♟️ Why is ‘Juice Jacking’ Suddenly Back in the News? ♟️
📖 Read
via "Krebs on Security".
KrebsOnSecurity received a nice bump in traffic this week thanks to tweets from the Federal Bureau of Investigation (FBI) and the Federal Communications Commission (FCC) about "juice jacking," a term first coined here in 2011 to describe a potential threat of data theft when one plugs their mobile device into a public charging kiosk. It remains unclear what may have prompted the alerts, but the good news is that there are some fairly basic things you can do to avoid having to worry about juice jacking.📖 Read
via "Krebs on Security".
Krebs on Security
Why is ‘Juice Jacking’ Suddenly Back in the News?
KrebsOnSecurity received a nice bump in traffic this week thanks to tweets from the Federal Bureau of Investigation (FBI) and the Federal Communications Commission (FCC) about "juice jacking," a term first coined here in 2011 to describe a potential threat…
🕴 Russian SolarWinds Culprits Launch Fresh Barrage of Espionage Cyberattacks 🕴
📖 Read
via "Dark Reading".
The threat group behind the SolarWinds supply-chain attacks is back with new tools for spying on officials in NATO countries and Africa.📖 Read
via "Dark Reading".
Dark Reading
Russian SolarWinds Culprits Launch Fresh Barrage of Espionage Cyberattacks
The threat group behind the SolarWinds supply chain attacks is back with new tools for spying on officials in NATO countries and Africa.
‼ CVE-2023-2076 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability classified as problematic was found in Campcodes Online Traffic Offense Management System 1.0. This vulnerability affects unknown code of the file /classes/Users.phpp. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-226054 is the identifier assigned to this vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27654 ‼
📖 Read
via "National Vulnerability Database".
An issue found in WHOv.1.0.28, v.1.0.30, v.1.0.32 allows an attacker to cause a escalation of privileges via the TTMultiProvider component.📖 Read
via "National Vulnerability Database".