Cloud Security Alliance News Clipping Site

Tag: zero-day vulnerability

  • The Register: China-linked group abuses Fortinet 0-day with post-exploit VPN-credential stealer

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/11/19/china_brazenbamboo_fortinet_0day/ Source: The Register Title: China-linked group abuses Fortinet 0-day with post-exploit VPN-credential stealer Feedly Summary: No word on when or if the issue will be fixed Chinese government-linked snoops are exploiting a zero-day bug in Fortinet’s Windows VPN client to steal credentials and other information, according to memory forensics outfit Volexity.… AI…

  • The Register: Mystery Palo Alto Networks hijack-my-firewall zero-day now officially under exploit

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/11/15/palo_alto_networks_firewall_zeroday/ Source: The Register Title: Mystery Palo Alto Networks hijack-my-firewall zero-day now officially under exploit Feedly Summary: Yank access to management interface, stat A critical zero-day vulnerability in Palo Alto Networks’ firewall management interface that can allow an unauthenticated attacker to remotely execute code is now officially under active exploitation.… AI Summary and…

  • Slashdot: Is AI-Driven 0-Day Detection Here?

    by

    system automation
    in

    Source URL: https://it.slashdot.org/story/24/11/02/2150233/is-ai-driven-0-day-detection-here?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Is AI-Driven 0-Day Detection Here? Feedly Summary: AI Summary and Description: Yes Summary: This text discusses the advancements in AI-driven vulnerability detection, particularly focusing on the implementation of LLM-powered methodologies that have proven effective in identifying critical zero-day vulnerabilities. The approach combines deep program analysis with adversarial AI agents,…

  • The Register: Windows Themes zero-day bug exposes users to NTLM credential theft

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/10/30/zeroday_windows_themes/ Source: The Register Title: Windows Themes zero-day bug exposes users to NTLM credential theft Feedly Summary: Plus a free micropatch until Redmond fixes the flaw There’s a Windows Themes spoofing zero-day bug on the loose that allows attackers to steal people’s NTLM credentials.… AI Summary and Description: Yes Summary: The text discusses…

  • Cisco Talos Blog: What I’ve learned in my first 7-ish years in cybersecurity

    by

    system automation
    in

    Source URL: https://blog.talosintelligence.com/threat-source-newsletter-oct-17-2024/ Source: Cisco Talos Blog Title: What I’ve learned in my first 7-ish years in cybersecurity Feedly Summary: Plus, a zero-day vulnerability in Qualcomm chips, exposed health care devices, and the latest on the Salt Typhoon threat actor. AI Summary and Description: Yes Summary: The text shares personal insights and experiences from an…

  • The Register: Rackspace monitoring systems hit by zero-day

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/09/30/rackspace_zero_day_attack/ Source: The Register Title: Rackspace monitoring systems hit by zero-day Feedly Summary: Intruders accessed internal web servers, limited info … customers told not to worry Exclusive Rackspace has told customers intruders exploited a zero-day bug in a third-party application it was using, and abused that vulnerability to break into its internal performance…

  • Hacker News: Hackers infect ISPs with malware that steals customers’ credentials

    by

    system automation
    in

    Source URL: https://arstechnica.com/security/2024/08/hackers-infect-isps-with-malware-that-steals-customers-credentials/ Source: Hacker News Title: Hackers infect ISPs with malware that steals customers’ credentials Feedly Summary: Comments AI Summary and Description: Yes Summary: This text discusses a significant zero-day vulnerability (CVE-2024-39717) affecting the Versa Director virtualization platform, exploited by malicious actors reportedly linked to the Chinese government. The exploitation allows attackers to gain…

  • Hacker News: New 0-Day Attacks Linked to China’s ‘Volt Typhoon’

    by

    system automation
    in

    Source URL: https://krebsonsecurity.com/2024/08/new-0-day-attacks-linked-to-chinas-volt-typhoon/ Source: Hacker News Title: New 0-Day Attacks Linked to China’s ‘Volt Typhoon’ Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a zero-day vulnerability in Versa Director, a software product leveraged by Internet service providers, which is currently being exploited by the Volt Typhoon hacking group, allegedly linked to…

  • Krebs on Security: New 0-Day Attacks Linked to China’s ‘Volt Typhoon’

    by

    system automation
    in

    Source URL: https://krebsonsecurity.com/2024/08/new-0-day-attacks-linked-to-chinas-volt-typhoon/ Source: Krebs on Security Title: New 0-Day Attacks Linked to China’s ‘Volt Typhoon’ Feedly Summary: Malicious hackers are exploiting a zero-day vulnerability in Versa Director, a software product used by many Internet and IT service providers. Researchers believe the activity is linked to Volt Typhoon, a Chinese cyber espionage group focused on…

  • Hacker News: Windows 0-day was exploited by North Korea to install advanced rootkit

    by

    system automation
    in

    Source URL: https://arstechnica.com/security/2024/08/windows-0-day-was-exploited-by-north-korea-to-install-advanced-rootkit/ Source: Hacker News Title: Windows 0-day was exploited by North Korea to install advanced rootkit Feedly Summary: Comments AI Summary and Description: Yes Summary: The text highlights a critical Windows zero-day vulnerability (CVE-2024-38193) exploited by the North Korean hacking group Lazarus to install advanced rootkit malware (FudModule). This sophisticated attack allows the…