|
Hackers
used new Windows Defender zero-day to drop DarkMe malware
|
|
BleepingComputer - 13 February 2024 16:52
|
|
Microsoft has patched today a Windows Defender SmartScreen zero-day
exploited in the wild by a financially motivated threat group to deploy
the DarkMe remote access trojan (RAT). […]
|
|
|
|
Microsoft
Rolls Out Patches for 73 Flaws, Including 2 Windows Zero-Days
|
|
The Hacker News - 14 February 2024 11:31
|
|
Microsoft has released patches to address 73 security
flaws spanning its software lineup as part of its Patch Tuesday
updates for February 2024, including two zero-days that have come under
active exploitation.Of the 73 vulnerabilities, 5 are rated Critical, 65
are rated Important, and three and rated Moderate in severity. This is
in addition to 24 flaws that have been fixed
|
|
|
|
Ivanti
VPN Flaw Exploited to Inject Novel Backdoor; Hundreds Pwned
|
|
darkreading - 13 February 2024 21:44
|
|
A SAML vulnerability in Ivanti appliances has led to persistent remote
access and full control for opportunistic cyberattackers.
|
|
|
|
Exploiting
Kubernetes through Operator Injection
|
|
Security Boulevard - 13 February 2024 20:24
|
|
Intro The Kubernetes documentation describes operators as “software
extensions to Kubernetes that use custom resources to manage
applications and their components.” These operators automate application
resource deployment and management with custom controllers tied to one
or more custom resource definitions. Custom controllers create bespoke
attack surfaces that attackers can target when they can control custom
resource data. […]The post Exploiting Kubernetes through Operator
Injection appeared first on Praetorian.The post Exploiting Kubernetes
through Operator Injection appeared first on Security Boulevard.
|
|
|
|
QNAP
vulnerability disclosure ends up an utter shambles
|
|
The Register - 13 February 2024 21:00
|
|
Two new flaws, one zero-day, countless different patches, but
everything’s fine! Network-attached storage (NAS) specialist QNAP has
disclosed and released fixes for two new vulnerabilities, one of them a
zero-day discovered in early November.…
|
|
|
|
Patch
Tuesday: Adobe Warns of Critical Flaws in Widely Deployed Software
|
|
SecurityWeek - 13 February 2024 17:59
|
|
Adobe ships patches for at least 30 documented security flaws, warning
that users are exposed to code execution, security feature bypass and
denial-of-service attacks.The post Patch Tuesday: Adobe Warns of
Critical Flaws in Widely Deployed Software appeared first on
SecurityWeek.
|
|
|
|
ICS
Patch Tuesday: Siemens Addresses 270 Vulnerabilities
|
|
SecurityWeek - 13 February 2024 13:35
|
|
February 2024 ICS Patch Tuesday: Siemens and Schneider Electric release
a total of 18 new security advisories.The post ICS Patch Tuesday:
Siemens Addresses 270 Vulnerabilities appeared first on SecurityWeek.
|
|
|
|
CISA
Adds One Known Exploited Vulnerability to Catalog
|
|
CISA Advisories -
|
|
CISA has added one new vulnerability to its Known Exploited
Vulnerabilities Catalog, based on evidence of active
exploitation.CVE-2023-43770 Roundcube Webmail Persistent Cross-Site
Scripting (XSS) VulnerabilityThese types of vulnerabilities are frequent
attack vectors for malicious cyber actors and pose significant risks to
the federal enterprise.Binding Operational Directive (BOD) 22-01:
Reducing the Significant Risk of Known Exploited
Vulnerabilities established the Known Exploited Vulnerabilities Catalog
as a living list of known Common Vulnerabilities and Exposures (CVEs)
that carry significant risk to the federal enterprise. BOD 22-01
requires Federal Civilian Executive Branch (FCEB) agencies to remediate
identified vulnerabilities by the due date to protect FCEB networks
against active threats. See the BOD 22-01 Fact Sheet for more
information.Although BOD 22-01 only applies to FCEB agencies, CISA
strongly urges all organizations to reduce their exposure to
cyberattacks by prioritizing timely remediation of Catalog
vulnerabilities as part of their vulnerability management practice. CISA
will continue to add vulnerabilities to the catalog that meet
the specified criteria.
|
|
|
|
CISA
Adds One Known Exploited Vulnerability to Catalog
|
|
CISA Advisories -
|
|
CISA has added one new vulnerability to its Known Exploited
Vulnerabilities Catalog, based on evidence of active
exploitation.CVE-2024-21762 Fortinet FortiOS Out-of-Bound Write
VulnerabilityThese types of vulnerabilities are frequent attack vectors
for malicious cyber actors and pose significant risks to the federal
enterprise.Binding Operational Directive (BOD) 22-01: Reducing the
Significant Risk of Known Exploited Vulnerabilities established the
Known Exploited Vulnerabilities Catalog as a living list of known Common
Vulnerabilities and Exposures (CVEs) that carry significant risk to the
federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch
(FCEB) agencies to remediate identified vulnerabilities by the due date
to protect FCEB networks against active threats. See the BOD 22-01 Fact
Sheet for more information.Although BOD 22-01 only applies to FCEB
agencies, CISA strongly urges all organizations to reduce their exposure
to cyberattacks by prioritizing timely remediation of Catalog
vulnerabilities as part of their vulnerability management practice. CISA
will continue to add vulnerabilities to the catalog that meet
the specified criteria.
|
|
|
