Aggregator
Arcus Media
2 days ago
cohenido
Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office
2 days ago
Mexico is investigating a ransomware attack targeting its legal affairs office, as confirmed by the president amidst growing cybersecurity concerns. Mexico’s president announced the government is investigating an alleged ransomware hack that targeted the administration’s legal affairs office. “Today they are going to send me a report on the supposed hacking.” President Claudia Sheinbaum said […]
Pierluigi Paganini
Cloud Security Startup Wiz to Acquire Dazz in Risk Management Play
2 days ago
Dazz's remediation engine will boost risk management in Wiz's cloud security portfolio.
Jennifer Lawinski, Contributing Writer
Windows 11 KB5046740 update released with 14 changes and fixes
2 days ago
Microsoft has released the November 2024 preview cumulative update for Windows 11 24H2, with 14 improvements and fixes for multiple issues, including some affecting File Explorer, the Clipboard history, and secondary displays. [...]
Sergiu Gatlan
BianLian
2 days 1 hour ago
cohenido
What Is FedRAMP ATO? Designations, Terms, and Updates
2 days 1 hour ago
As a cloud service provider (CSP), working with federal agencies may be one of your goals. But to do so, you need to meet rigorous security standards from the Federal Risk and Authorization Management Program (FedRAMP).
The post What Is FedRAMP ATO? Designations, Terms, and Updates appeared first on Security Boulevard.
Legit Security
7 Best AI Cybersecurity Tools for Your Company
2 days 1 hour ago
With advanced AI cybersecurity tools, you bring powerful capabilities to your security strategy. AI enhances threat detection, automates key security tasks, and strengthens your overall security posture, completing tasks with speed and accuracy that humans can’t match.
The post 7 Best AI Cybersecurity Tools for Your Company appeared first on Security Boulevard.
Legit Security
10 Most Impactful PAM Use Cases for Enhancing Organizational Security
2 days 1 hour ago
Privileged access management (PAM) plays a pivotal role in building a strong security strategy. PAM
Feds Charge Five Men in ‘Scattered Spider’ Roundup
2 days 1 hour ago
Federal prosecutors in Los Angeles this week unsealed criminal charges against five men alleged to be members of a hacking group responsible for dozens of cyber intrusions at major U.S. technology companies between 2021 and 2023, including LastPass, MailChimp, Okta, T-Mobile and Twilio.
BrianKrebs
Chinese hackers target Linux with new WolfsBane malware
2 days 1 hour ago
A new Linux backdoor called 'WolfsBane' has been discovered, believed to be a port of Windows malware used by the Chinese 'Gelsemium' hacking group. [...]
Bill Toulas
North Korean Front Companies Impersonate U.S. IT Firms to Fund Missile Programs
2 days 1 hour ago
Threat actors with ties to the Democratic People's Republic of Korea (DPRK) are impersonating U.S.-
House Standing Committee on Procedure and House Affairs (PROC): June 6, 2024
2 days 1 hour ago
Canadian Centre for Cyber Security
Chinese APT Gelsemium Deploys 'Wolfsbane' Linux Variant
2 days 1 hour ago
In a sign of the times, a backdoor malware whose ancestors date back to 2005 has morphed to target Linux systems.
Nate Nelson, Contributing Writer
CVE-2024-52053 | Wowza Streaming Engine up to 4.8.27+5 Administrator Dashboard cross site scripting
2 days 1 hour ago
A vulnerability was found in Wowza Streaming Engine up to 4.8.27+5. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Administrator Dashboard. The manipulation leads to cross site scripting.
This vulnerability is known as CVE-2024-52053. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
RansomHub
2 days 1 hour ago
cohenido
CVE-2024-52054 | Wowza Streaming Engine up to 4.8.27+5 XML File injection
2 days 1 hour ago
A vulnerability was found in Wowza Streaming Engine up to 4.8.27+5. It has been classified as problematic. Affected is an unknown function of the component XML File Handler. The manipulation leads to injection.
This vulnerability is traded as CVE-2024-52054. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-52056 | Wowza Streaming Engine up to 4.8.27+5 XML File injection
2 days 1 hour ago
A vulnerability was found in Wowza Streaming Engine up to 4.8.27+5 and classified as problematic. This issue affects some unknown processing of the component XML File Handler. The manipulation leads to injection.
The identification of this vulnerability is CVE-2024-52056. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-52055 | Wowza Streaming Engine up to 4.8.27+5 XML File injection
2 days 1 hour ago
A vulnerability has been found in Wowza Streaming Engine up to 4.8.27+5 and classified as problematic. This vulnerability affects unknown code of the component XML File Handler. The manipulation leads to injection.
This vulnerability was named CVE-2024-52055. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-52052 | Wowza Streaming Engine up to 4.8.27+5 Privilege Escalation
2 days 1 hour ago
A vulnerability, which was classified as critical, was found in Wowza Streaming Engine up to 4.8.27+5. This affects an unknown part. The manipulation leads to Privilege Escalation.
This vulnerability is uniquely identified as CVE-2024-52052. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com