Cloud Security Alliance News Clipping Site

Tag: CVE

  • The Register: Samsung phone users under attack, Google warns

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/10/24/samsung_phone_eop_attacks/ Source: The Register Title: Samsung phone users under attack, Google warns Feedly Summary: Don’t ignore this nasty zero day exploit says TAG A nasty bug in Samsung’s mobile chips is being exploited by miscreants as part of an exploit chain to escalate privileges and then remotely execute arbitrary code, according to Google…

  • Cloud Blog: Investigating FortiManager Zero-Day Exploitation (CVE-2024-47575)

    by

    system automation
    in

    Source URL: https://cloud.google.com/blog/topics/threat-intelligence/fortimanager-zero-day-exploitation-cve-2024-47575/ Source: Cloud Blog Title: Investigating FortiManager Zero-Day Exploitation (CVE-2024-47575) Feedly Summary: Written by: Foti Castelan, Max Thauer, JP Glab, Gabby Roncone, Tufail Ahmed, Jared Wilson Summary In October 2024, Mandiant collaborated with Fortinet to investigate the mass exploitation of FortiManager appliances across 50+ potentially compromised FortiManager devices in various industries. The vulnerability,…

  • The Register: Warning! FortiManager critical vulnerability under active attack

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/10/23/fortimanager_critical_vulnerability/ Source: The Register Title: Warning! FortiManager critical vulnerability under active attack Feedly Summary: Security shop and CISA urge rapid action Fortinet has gone public with news of a critical flaw in its software management platform.… AI Summary and Description: Yes Summary: The text discusses a critical security vulnerability in Fortinet’s FortiManager control…

  • The Register: Microsoft SharePoint RCE flaw exploits in the wild – you’ve had 3 months to patch

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/10/23/microsoft_sharepoint_rce_exploited/ Source: The Register Title: Microsoft SharePoint RCE flaw exploits in the wild – you’ve had 3 months to patch Feedly Summary: Plus, a POC to make it extra easy for attackers A Microsoft SharePoint bug that can allow an attacker to remotely inject code into vulnerable versions is under active exploitation, according…

  • Alerts: CISA Adds One Known Exploited Vulnerability to Catalog

    by

    system automation
    in

    Source URL: https://www.cisa.gov/news-events/alerts/2024/10/23/cisa-adds-one-known-exploited-vulnerability-catalog Source: Alerts Title: CISA Adds One Known Exploited Vulnerability to Catalog Feedly Summary: CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation, as confirmed by Fortinet. CVE-2024-47575 Fortinet FortiManager Missing Authentication Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors…

  • Alerts: CISA Adds One Known Exploited Vulnerability to Catalog

    by

    system automation
    in

    Source URL: https://www.cisa.gov/news-events/alerts/2024/10/22/cisa-adds-one-known-exploited-vulnerability-catalog Source: Alerts Title: CISA Adds One Known Exploited Vulnerability to Catalog Feedly Summary: CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-38094 Microsoft SharePoint Deserialization Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to…

  • The Register: VMware fixes critical RCE, make-me-root bugs in vCenter – for the second time

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/10/22/vmware_rce_vcenter_bugs/ Source: The Register Title: VMware fixes critical RCE, make-me-root bugs in vCenter – for the second time Feedly Summary: If the first patches don’t work, try, try again VMware has pushed a second patch for a critical, heap-overflow bug in the vCenter Server that could allow a remote attacker to fully compromise vulnerable…

  • The Register: Akira ransomware is encrypting victims again following pure extortion fling

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/10/22/akira_encrypting_again/ Source: The Register Title: Akira ransomware is encrypting victims again following pure extortion fling Feedly Summary: Crooks revert to old ways for greater efficiency Experts believe the Akira ransomware operation is up to its old tricks again, encrypting victims’ files after a break from the typical double extortion tactics.… AI Summary and…

  • Cisco Talos Blog: Akira ransomware continues to evolve

    by

    system automation
    in

    Source URL: https://blog.talosintelligence.com/akira-ransomware-continues-to-evolve/ Source: Cisco Talos Blog Title: Akira ransomware continues to evolve Feedly Summary: As the Akira ransomware group continues to evolve its operations, Talos has the latest research on the group’s attack chain, targeted verticals, and potential future TTPs. AI Summary and Description: Yes **Summary:** The text provides an in-depth analysis of the…

  • Alerts: CISA Adds One Known Exploited Vulnerability to Catalog

    by

    system automation
    in

    Source URL: https://www.cisa.gov/news-events/alerts/2024/10/21/cisa-adds-one-known-exploited-vulnerability-catalog Source: Alerts Title: CISA Adds One Known Exploited Vulnerability to Catalog Feedly Summary: CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-9537 ScienceLogic SL1 Unspecified Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to…