SolarWinds Hack — New Evidence Suggests Potential Links to Chinese Hackers
https://thehackernews.com/2021/03/solarwinds-hack-new-evidence-suggests.html
#infosec #cyberattack
https://thehackernews.com/2021/03/solarwinds-hack-new-evidence-suggests.html
#infosec #cyberattack
The Hacker News
SolarWinds Hack — New Evidence Suggests Potential Links to Chinese Hackers
A web shell deployed on Windows PC by leveraging zero-day in SolarWinds network monitoring software may have been the work of a Chinese hacking group.
Warning — SolarWinds Orion Platform has been found vulnerable to a new critical remote code execution (RCE) vulnerability via JSON deserialization.
Read: https://thehackernews.com/2021/03/solarwinds-orion-vulnerability.html
Patches have been released for this and 3 other vulnerabilities.
#infosec #cybersecurity
Read: https://thehackernews.com/2021/03/solarwinds-orion-vulnerability.html
Patches have been released for this and 3 other vulnerabilities.
#infosec #cybersecurity
The Hacker News
Another Critical RCE Flaw Discovered in SolarWinds Orion Platform
A new critical vulnerability discovered in SolarWinds Orion Platform can be exploited to achieve remote code execution.
Microsoft has finally addressed a critical vulnerability in the Power Platform after facing criticism for the delay. Unauthorized access to Custom Code functions may lead to data disclosure.
Read: https://thehackernews.com/2023/08/microsoft-addresses-critical-power.html
Take immediate action to secure your system. #infosec
Read: https://thehackernews.com/2023/08/microsoft-addresses-critical-power.html
Take immediate action to secure your system. #infosec
👍18🔥7
UPDATE — Airbus CERT releases Python scripts to scan for the critical CrushFTP flaw (CVE-2024-4040) that allows remote code execution. The zero-day has been exploited in attacks against U.S. entities.
Check: https://thehackernews.com/2024/04/critical-update-crushftp-zero-day-flaw.html
#infosec
Check: https://thehackernews.com/2024/04/critical-update-crushftp-zero-day-flaw.html
#infosec
👍20🤯6😁2⚡1
A 27-year-old Russian has been sentenced to more than three years in prison for selling stolen financial information on the dark web.
He sold over 297,300 login credentials, resulting in $1.2 million in fraudulent transactions.
https://thehackernews.com/2024/08/russian-hacker-jailed-3-years-for.html
#infosec #cybersecurity
He sold over 297,300 login credentials, resulting in $1.2 million in fraudulent transactions.
https://thehackernews.com/2024/08/russian-hacker-jailed-3-years-for.html
#infosec #cybersecurity
😁22👍14🤯7😱4🤔3
⚠️ Multiple MMS protocol vulnerabilities pose a severe threat to industrial devices, potentially leading to crashes or remote code execution that could disrupt critical infrastructure.
Learn more: https://thehackernews.com/2024/10/researchers-uncover-major-security.html
#infosec
Learn more: https://thehackernews.com/2024/10/researchers-uncover-major-security.html
#infosec
The Hacker News
Researchers Uncover Major Security Vulnerabilities in Industrial MMS Protocol Libraries
Multiple MMS protocol vulnerabilities expose industrial systems to remote code execution, crashes, and DoS attacks.
🔥9👍4🤔2