Aggregator

Пользователи жалуются на изменение ключевых настроек браузеров без их ведома.

The Apache CloudStack project has announced the release of long-term support (LTS) security updates, versions 4.18.2.3 and 4.19.1.1, which address two critical vulnerabilities, CVE-2024-42062 and CVE-2024-42222. These vulnerabilities pose significant risks to the integrity, confidentiality, and availability of CloudStack-managed infrastructure. CVE-2024-42062: User Key Exposure to Domain Admins CVE-2024-42062 is a critical vulnerability that affects Apache […]

The post Apache Cloudstack Vulnerability Exposes API & Secret Keys to Admin Accounts appeared first on Cyber Security News.

Amazon’s e-commerce platforms and cloud services form a digital ecosystem requiring a strong cybersecurity framework. Amazon, which has a vast online presence covering multiple domains and services, is at great risk of being attacked by advanced cyber threats. For this reason, Amazon uses an innovative mixture of the latest technologies and old security measures to […]

The post AWS Launches Mithra To Detect Malicious Domains Across Systems appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News Platform.

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

• CVE-2024-36971 Android Kernel Remote Code Execution Vulnerability
• CVE-2024-32113 Apache OFBiz Path Traversal Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

Today, CISA—in partnership with the Federal Bureau of Investigation (FBI)—released an update to joint Cybersecurity Advisory #StopRansomware: Royal Ransomware, #StopRansomware: BlackSuit (Royal) Ransomware. The updated advisory provides network defenders with recent and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) associated with BlackSuit and legacy Royal activity. FBI investigations identified these TTPs and IOCs as recently as July 2024.

BlackSuit ransomware attacks have spread across numerous critical infrastructure sectors including, but not limited to, commercial facilities, healthcare and public health, government facilities, and critical manufacturing.

CISA encourages network defenders to review the updated advisory and apply the recommended mitigations. See #StopRansomware for additional guidance on ransomware protection, detection, and response. Visit CISA’s Cross-Sector Cybersecurity Performance Goals for more information on the CPGs, including additional recommended baseline protections.

CISA encourages software manufacturers to take ownership of improving the security outcomes of their customers by applying secure by design tactics. For more information on secure by design, see CISA’s Secure by Design webpage and joint guide Shifting the Balance of Cybersecurity Risk: Principles and Approaches for Secure by Design Software.

每日更新当天鲜活情报和热点漏洞

国内大量家用路由器网络访问异常和流量劫持事件分析

A vulnerability in Microsoft 365 (formerly Office 365) has been found that allows malicious actors to bypass anti-phishing measures. One of the anti-phishing features available in Exchange Online Protection (EOP) and Microsoft Defender to Office 365 enterprises is the ‘First Contact Safety Tip.’ In the first contact safety tip, users are cautioned when they get […]

The post Microsoft 365 Vulnerability Let Hackers Bypass Anti-phishing Feature appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News Platform.

Как злоумышленники наживались на черном дне для мира криптовалют.

Do you want to analyze decrypted TLS traffic in Wireshark or let an IDS, like Suricata, Snort or Zeek, inspect the application layer data of potentially malicious TLS encrypted traffic? There are many different TLS inspection solutions to choose from, but not all of them might be suitable for the sp[...]

The fast-rising ransomware group Hunters International is using a novel remote access trojan (RAT)

锁定11月9日，FCIS 2024网络安全创新大会·十周年，一起迈向安全服务化时代，开启下一个十年。

致力于第一时间为企业级用户提供权威漏洞情报和有效解决方案。

本零基础全栈网络安全就业班旨在为学员提供全面的、从基础网络知识到高级内网渗透和安全防护知识,由浅入深,逐步进阶。

主站 分类 漏洞 工具 极客

中国发射了首批与 SpaceX Starlink 类似的宽带卫星，计划中的宽带卫星总数将高达 1.5 万颗。据新华社报道，中国于 8 月 6 日 14 时 42 分在太原卫星发射中心使用长征六号改运载火箭，成功将千帆极轨01组卫星发射升空。这批卫星共 18 颗，为上海垣信卫星科技有限公司千帆星座第一代卫星（GEN1卫星）中的第一批次，今年计划发射 108 颗星，到 2030 年底“千帆星座”将完成超 1.5 万颗低轨卫星的互联网组网。根据递交到国际电信联盟的文件，千帆星座计划最初几年在 1160 公里轨道高度上部署 1296 颗卫星。卫星工厂年产量能达到 300 到 500 颗。为了加快发射频率，中国正在加速研发可回收火箭。

JDK 高版本的 Aviator 表达式注入​Aviator 表达式注入代码示例见 JavaRce 项目 ，在之前 aviatorscript 的漏洞披露给出了了如下形式的 payload，利用

H3CIMC-EIA 终端智能接入组件远程代码执行漏洞

NCSC CEO Felicity Oswald shares reflections on keeping the 2024 General Election safe.