Aggregator

A vulnerability, which was classified as critical, has been found in SourceCodester Tracking Monitoring Management System 1.0. This issue affects some unknown processing of the file /manage_user.php. The manipulation of the argument id leads to sql injection. The identification of this vulnerability is CVE-2024-7362. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in SourceCodester Tracking Monitoring Management System 1.0. This vulnerability affects unknown code of the file /ajax.php?action=save_establishment. The manipulation of the argument id leads to sql injection. This vulnerability was named CVE-2024-7361. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic has been found in SourceCodester Tracking Monitoring Management System 1.0. This affects an unknown part of the file /ajax.php. The manipulation leads to cross-site request forgery. This vulnerability is uniquely identified as CVE-2024-7360. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in SourceCodester Tracking Monitoring Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /ajax.php?action=save_establishment. The manipulation of the argument name leads to cross site scripting. This vulnerability is handled as CVE-2024-7359. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in Point B Ltd Getscreen Agent 2.19.6 on Windows. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file getscreen.msi of the component Installation. The manipulation leads to creation of temporary file with insecure permissions. This vulnerability is known as CVE-2024-7358. Local access is required to approach this attack. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but was not able to provide a technical response in time.

Two-plus decades of enduring wave after wave of mobile app malware and fraud has finally taken its toll on users.

Now comes a global survey from Appdome and OWASP that reveals the vast majority of consumers are fed up.

I … (more…)

The post Black Hat Fireside Chat: Consumers demand secure mobile apps; it’s high time for brands to deliver first appeared on The Last Watchdog.

The post Black Hat Fireside Chat: Consumers demand secure mobile apps; it’s high time for brands to deliver appeared first on Security Boulevard.

OneBlood, the not-for-profit blood center serving much of the southeastern United States, has been hit by a ransomware attack that has impacted its software systems. The organization works closely with cybersecurity specialists and federal, state, and local agencies to address the situation. “OneBlood takes the security of our network extremely seriously,” said Susan Forbes, OneBlood’s […]

The post OneBlood Hit by Ransomware Attack, Software Systems Affected appeared first on Cyber Security News.

A vulnerability was found in Ultimate Classified Listings Plugin up to 1.3 on WordPress. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-6529. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in WP-FeedStats socialdriver-framework Plugin 2024.0.0 on WordPress and classified as problematic. This issue affects some unknown processing of the component Setting Handler. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-2872. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in WooCommerce Customers Manager Plugin up to 30.1 on WordPress and classified as problematic. This vulnerability affects unknown code of the component Metadata Handler. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-1747. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Light Poll Plugin up to 1.0.0 on WordPress. This affects an unknown part. The manipulation leads to cross-site request forgery. This vulnerability is uniquely identified as CVE-2024-6496. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in WooCommerce Customers Manager Plugin up to 30.0 on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. This vulnerability is handled as CVE-2024-3983. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in loating Notification Bar, Sticky Menu on Scroll, Announcement Banner, and Sticky Header for Any Plugin up to 2.7.1 on WordPress. Affected by this vulnerability is an unknown functionality of the component Setting Handler. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-4090. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in WooCommerce Customers Manager Plugin up to 30.0 on WordPress. Affected is an unknown function. The manipulation leads to cross-site request forgery. This vulnerability is traded as CVE-2024-2843. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

一种被研究人员称为”BingoMod”的新型安卓恶意软件，在成功利用设备上的欺诈技术从受害者的银行账户中窃取资金后，可以清除设备数据。 BingoMod通过短信推广，通常伪装成一个合法的移动安全工具，每次交易最多可窃取15000欧元。根据研究人员的分析，BingoMod目前正在积极开发中，其开发者专注于添加代码混淆和各种逃避机制，以降低被检测率。 BingoMod的详细信息 在线欺诈管理和预防解决方案公司Cleafy的研究人员发现，BingoMod是通过smishing（短信钓鱼）活动传播的，并使用通常表明移动安全工具的各种名称（例如APP Protection, Antivirus Cleanup, Chrome Update, InfoWeb, SicurezzaWeb, WebSecurity, WebsInfo, WebInfo, APKAppScudo）。 为了在设备上进行欺诈（ODF），恶意软件建立了一个基于套接字的通道来接收命令，以及一个基于HTTP的通道来发送屏幕截图源，从而实现几乎实时的远程操作。 虚拟网络计算 （VNC） 机制和数据交换 来源：Cleafy ODF是一种从受害者的设备发起欺诈交易的常用技术，可以骗过依赖身份验证和认证的标准反欺诈系统。 Cleafy研究人员在报告中解释说，“VNC程序滥用安卓的Media Projection API来获取实时屏幕内容。一旦接收到这些内容，就会将其转换为合适的格式，并通过HTTP传输到威胁行为者的基础设施。” 该程序的一个特点是，它可以利用无障碍服务“冒充用户并启用由Media Projection API公开的屏幕投影请求。” BingoMod 的 VNC 路由器 来源：Cleafy 远程操作者可以向BingoMod发送的命令包括点击特定区域、在指定的输入元素上写文本和启动应用程序。 该恶意软件还允许通过威胁行为者发起的虚假通知手动进行覆盖攻击。此外，感染了BingoMod的设备还可以通过短信进一步传播恶意软件。 禁用防御和清除数据 BingoMod可以从受害者的设备中移除安全解决方案或阻止威胁行为者在命令中指定的应用程序的活动。 为了逃避检测，BingoMod的创建者添加了代码扁平化和字符串混淆层，根据VirusTotal上的扫描结果，实现了预期的目标。 VirusTotal 扫描结果 来源：Cleafy 如果BingoMod作为设备管理应用程序注册在设备上，操作者就可以发送远程命令来清除系统。根据研究人员的说法，这个功能只有在成功转账后才会执行，并且只影响外部存储。 数据清除程序 来源：Cleafy 如果要彻底清除系统，威胁行为者可能使用远程访问功能从系统设置中清除所有数据并重置手机。 虽然BingoMod目前的版本是1.5.1，但Cleafy表示它似乎处于早期开发阶段。根据代码中的注释，研究人员认为BingoMod可能是罗马尼亚开发者的作品。不过，也有可能是其他国家的开发者所为。   转自Freebuf，原文链接：https://www.freebuf.com/news/407491.html 封面来源于网络，如有侵权请联系删除

AMD 尚未公布 Zen5 处理器的价格，但它在美国的主要零售合作伙伴百思买(Best Buy)已经提前将其泄露：最高端的 Ryzen 9 9950X（16C / 32T）599 美元，Ryzen 9 9900X（12C / 24T）449 美元，Ryzen 7 9700X（8C / 16T）359 美元，Ryzen 5 9600X（6C / 12T）279 美元。这一定价要低于 Zen3 和 Zen4 同类处理器的上市价，当然要比 Zen4 处理器目前的价格要贵：基于 Zen3 架构的 Ryzen 9 5950X 在 2020 年的上市价为 799 美元，而基于 Zen4 架构的 Ryzen 9 7950X 在 2022 年的上市价为 699 美元，Ryzen 9 9950X 的定价分别低了 200 和 100 美元，但低端型号降幅有限。

MuddyWater 频繁更新恶意样本，塞讯验证建议尽快验证安全防御体系是否能有效应对攻击，做好主动防御工作。

漏洞打点攻击作为一种高效隐蔽的攻击手段，严重威胁着企业的信息安全。

If you’ve landed here, chances are you know just how challenging getting SOC 2 certification can be. Dealing with manual processes, spreadsheets, and endless piles of documentation can feel like a never-ending battle.  I get it—it’s overwhelming and inefficient. In your search for a more streamlined approach, you’re likely looking for a solution beyond SOC […]

The post Best 5 SOC 2 Compliance Software in 2024 appeared first on Centraleyes.

The post Best 5 SOC 2 Compliance Software in 2024 appeared first on Security Boulevard.

As per recent media reports, two Russian nationals have pleaded guilty in a United States (US) court for affiliate participation in the LockBit ransomware attacks. The two individuals part of the LockBit ransomware scheme have been identified as Ruslan Magomedovich Astamirov and Mikhail Vasiliev. In this article, we’ll dive into the details of the plea […]

The post LockBit Ransomware: Two Russians Plead Guilty For Attacks appeared first on TuxCare.

The post LockBit Ransomware: Two Russians Plead Guilty For Attacks appeared first on Security Boulevard.