vulnerability - Security Ticks

Thousands of GitLab Instances Unpatched Against Critical Password Reset Bug

GitLab, Vulnerabilities, vulnerability / SecurityTicks

Thousands of GitLab Instances Unpatched Against Critical Password Reset Bug 2024-01-25 at 15:46 By Ionut Arghire Over 5,000 GitLab servers have yet to be patched against CVE-2023-7028, a critical password reset vulnerability. The post Thousands of GitLab Instances Unpatched Against Critical Password Reset Bug appeared first on SecurityWeek. This article is an excerpt from SecurityWeek […]

Thousands of GitLab Instances Unpatched Against Critical Password Reset Bug Read More »

PoC exploit for easily exploitable Fortra GoAnywhere MFT vulnerability released (CVE-2024-0204)

Don't miss, enterprise, file-sharing, Fortra, Horizon3.ai, Hot stuff, News, PoC, Shodan, SMBs, Tenable, vulnerability / SecurityTicks

PoC exploit for easily exploitable Fortra GoAnywhere MFT vulnerability released (CVE-2024-0204) 2024-01-24 at 15:32 By Zeljka Zorz Proof-of-concept (PoC) exploit code for a critical vulnerability (CVE-2024-0204) in Fortra’s GoAnywhere MFT solution has been made public, sparking fears that attackers may soon take advantage of it. Fortra’s GoAnywhere MFT is a web-based managed file transfer solution

PoC exploit for easily exploitable Fortra GoAnywhere MFT vulnerability released (CVE-2024-0204) Read More »

Vulnerabilities in Lamassu Bitcoin ATMs Can Allow Hackers to Drain Wallets

ATM, Bitcoin, Vulnerabilities, vulnerability / SecurityTicks

Vulnerabilities in Lamassu Bitcoin ATMs Can Allow Hackers to Drain Wallets 2024-01-23 at 20:46 By Ionut Arghire Hackers could exploit Lamassu Douro ATM vulnerabilities to take over devices, steal bitcoin from users. The post Vulnerabilities in Lamassu Bitcoin ATMs Can Allow Hackers to Drain Wallets appeared first on SecurityWeek. This article is an excerpt from

Vulnerabilities in Lamassu Bitcoin ATMs Can Allow Hackers to Drain Wallets Read More »

Hackers Targeting Critical Atlassian Confluence Vulnerability Days After Disclosure

Atlassian, Confluence, exploited, Featured, Vulnerabilities, vulnerability / SecurityTicks

Hackers Targeting Critical Atlassian Confluence Vulnerability Days After Disclosure 2024-01-22 at 18:16 By Eduard Kovacs The Atlassian Confluence vulnerability CVE-2023-22527 is being exploited in the wild just days after it was disclosed. The post Hackers Targeting Critical Atlassian Confluence Vulnerability Days After Disclosure appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

Hackers Targeting Critical Atlassian Confluence Vulnerability Days After Disclosure Read More »

Attackers can steal NTLM password hashes via calendar invites

authentication, Don't miss, enterprise, Hot stuff, News, Outlook, passwords, SMBs, Varonis, vulnerability, Windows / SecurityTicks

Attackers can steal NTLM password hashes via calendar invites 2024-01-22 at 15:46 By Zeljka Zorz A recently patched vulnerability in Microsoft Outlook (CVE-2023-35636) that can be used by attackers to steal users’ NTLM v2 hashes can be exploited by adding two headers to an email carrying a specially crafted file, security researcher Dolev Taler has

Attackers can steal NTLM password hashes via calendar invites Read More »

Ivanti EPMM and MobileIron Core vulnerability is actively exploited, CISA confirms (CVE-2023-35082)

CISA, Don't miss, endpoint management, exploit, GreyNoise, Ivanti, News, Rapid7, vulnerability / SecurityTicks

Ivanti EPMM and MobileIron Core vulnerability is actively exploited, CISA confirms (CVE-2023-35082) 2024-01-19 at 19:49 By Zeljka Zorz A previously patched critical vulnerability (CVE-2023-35082) affecting Ivanti Endpoint Manager Mobile (EPMM) and MobileIron Core is being actively exploited, the Cybersecurity and Infrastructure Security Agency (CISA) has confirmed by adding the vulnerability to its Known Exploited Vulnerabilities

Ivanti EPMM and MobileIron Core vulnerability is actively exploited, CISA confirms (CVE-2023-35082) Read More »

Cyble Global Sensors pick up persistent exploitation of Ivanti Connect Secure Vulnerabilities

exploit, Malware, vulnerability / SecurityTicks

Cyble Global Sensors pick up persistent exploitation of Ivanti Connect Secure Vulnerabilities 2024-01-19 at 16:18 By cybleinc Cyble Global Sensors pick up persistent exploitation of Ivanti Connect Secure Vulnerabilities Introduction Cyble Global Sensor Intelligence (CGSI) has detected the continuous exploitation of recently revealed vulnerabilities in Ivanti Connect Secure (ICS), previously known as Pulse Connect Secure

Cyble Global Sensors pick up persistent exploitation of Ivanti Connect Secure Vulnerabilities Read More »

Unpatched Rapid SCADA Vulnerabilities Expose Industrial Organizations to Attacks

ICS, ICS/OT, SCADA, Vulnerabilities, vulnerability / SecurityTicks

Unpatched Rapid SCADA Vulnerabilities Expose Industrial Organizations to Attacks 2024-01-18 at 18:16 By Eduard Kovacs Seven vulnerabilities found in Rapid SCADA could be exploited to gain access to sensitive industrial systems, but they remain unpatched. The post Unpatched Rapid SCADA Vulnerabilities Expose Industrial Organizations to Attacks appeared first on SecurityWeek. This article is an excerpt

Unpatched Rapid SCADA Vulnerabilities Expose Industrial Organizations to Attacks Read More »

VMware: Plug critical Aria Automation hole immediately! (CVE-2023-34063)

Cloud, CSIRO, Don't miss, News, security update, VMWare, vulnerability / SecurityTicks

VMware: Plug critical Aria Automation hole immediately! (CVE-2023-34063) 2024-01-18 at 12:16 By Zeljka Zorz A critical vulnerability (CVE-2023-34063) affecting VMware Aria Automation and VMware Cloud Foundation can be exploited by attackers to gain access to remote organizations and workflows, VMware has warned. The company is not aware of any “in the wild” exploitation of this

VMware: Plug critical Aria Automation hole immediately! (CVE-2023-34063) Read More »

GitHub Rotates Credentials in Response to Vulnerability

GitHub, Vulnerabilities, vulnerability / SecurityTicks

GitHub Rotates Credentials in Response to Vulnerability 2024-01-17 at 15:31 By Ionut Arghire GitHub rotates credentials and releases patches after being alerted of a vulnerability affecting GitHub.com and GitHub Enterprise Server. The post GitHub Rotates Credentials in Response to Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

GitHub Rotates Credentials in Response to Vulnerability Read More »

Atlassian reveals critical Confluence RCE flaw, urges “immediate action” (CVE-2023-22527)

Atlassian, Atlassian Confluence, CVE, Don't miss, enterprise, Hot stuff, News, security update, vulnerability / SecurityTicks

Atlassian reveals critical Confluence RCE flaw, urges “immediate action” (CVE-2023-22527) 2024-01-16 at 19:46 By Zeljka Zorz Atlassian has patched a critical vulnerability (CVE-2023-22527) in Confluence Data Center and Confluence Server that could lead to remote code execution. The good news is that the flaw was fixed in early December 2023 with the release of versions

Atlassian reveals critical Confluence RCE flaw, urges “immediate action” (CVE-2023-22527) Read More »

Critical Account Takeover Vulnerability Impacting GitLab

Account Takeover, GitLab, vulnerability / SecurityTicks

Critical Account Takeover Vulnerability Impacting GitLab 2024-01-16 at 17:32 By cybleinc Critical Account Takeover Vulnerability Impacting GitLab On January 11, 2024, Security fixes for GitLab Community Edition (CE) and Enterprise Edition (EE) were released. The vulnerability identified as CVE-2023-7028 falls under the critical severity category and impacts multiple GitLab CE/EE versions. Exploiting this vulnerability could

Critical Account Takeover Vulnerability Impacting GitLab Read More »

VMware Urges Customers to Patch Critical Aria Automation Vulnerability

VMWare, Vulnerabilities, vulnerability / SecurityTicks

VMware Urges Customers to Patch Critical Aria Automation Vulnerability 2024-01-16 at 16:16 By Eduard Kovacs Aria Automation is affected by a critical vulnerability that could be exploited to gain access to remote organizations and workflows. The post VMware Urges Customers to Patch Critical Aria Automation Vulnerability appeared first on SecurityWeek. This article is an excerpt

VMware Urges Customers to Patch Critical Aria Automation Vulnerability Read More »

Remote Code Execution Vulnerability Found in Opera File Sharing Feature

Opera, Vulnerabilities, vulnerability / SecurityTicks

Remote Code Execution Vulnerability Found in Opera File Sharing Feature 2024-01-16 at 16:16 By Ionut Arghire A vulnerability in Opera browser’s file sharing feature My Flow could be exploited for remote code execution. The post Remote Code Execution Vulnerability Found in Opera File Sharing Feature appeared first on SecurityWeek. This article is an excerpt from

Remote Code Execution Vulnerability Found in Opera File Sharing Feature Read More »

GitLab Patches Critical Password Reset Vulnerability

GitLab, Vulnerabilities, vulnerability / SecurityTicks

GitLab Patches Critical Password Reset Vulnerability 2024-01-15 at 13:46 By Ionut Arghire GitLab has resolved a critical authentication vulnerability allowing attackers to hijack password reset emails. The post GitLab Patches Critical Password Reset Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

GitLab Patches Critical Password Reset Vulnerability Read More »

Juniper fixes critical RCE in its SRX firewalls and EX switches (CVE-2024-21591)

Don't miss, enterprise, firewall, Hot stuff, Juniper Networks, News, security update, vulnerability / SecurityTicks

Juniper fixes critical RCE in its SRX firewalls and EX switches (CVE-2024-21591) 2024-01-15 at 11:16 By Helga Labus Juniper Networks has fixed a critical pre-authentication remote code execution (RCE) vulnerability (CVE-2024-21591) in Junos OS on SRX firewalls and EX switches. About CVE-2024-21591 CVE-2024-21591 is an out-of-bounds write vulnerability that could allow an unauthenticated, network-based threat

Juniper fixes critical RCE in its SRX firewalls and EX switches (CVE-2024-21591) Read More »

Akira ransomware attackers are wiping NAS and tape backups

backup, Cisco, Don't miss, EU, exploit, Hot stuff, NAS, News, Ransomware, vulnerability / SecurityTicks

Akira ransomware attackers are wiping NAS and tape backups 2024-01-12 at 16:17 By Helga Labus “The Akira ransomware malware, which was first detected in Finland in June 2023, has been particularly active at the end of the year,” the Finnish National Cybersecurity Center (NCSC-FI) has shared on Wednesday. NCSC-FI has received 12 reports of Akira

Akira ransomware attackers are wiping NAS and tape backups Read More »

Critical GitLab flaw allows account takeover without user interaction, patch quickly! (CVE-2023-7028)

account hijacking, Don't miss, GitLab, Hot stuff, News, security update, vulnerability / SecurityTicks

Critical GitLab flaw allows account takeover without user interaction, patch quickly! (CVE-2023-7028) 2024-01-12 at 13:16 By Zeljka Zorz A critical vulnerability in GitLab CE/EE (CVE-2023-7028) can be easily exploited by attackers to reset GitLab user account passwords. While also vulnerable, users who have two-factor authentication enabled on their account are safe from account takeover. “We

Critical GitLab flaw allows account takeover without user interaction, patch quickly! (CVE-2023-7028) Read More »

Critical Cisco Unity Connection flaw gives attackers root privileges. Patch now! (CVE-2024-20272)

Cisco, Don't miss, Hot stuff, News, security update, vulnerability / SecurityTicks

Critical Cisco Unity Connection flaw gives attackers root privileges. Patch now! (CVE-2024-20272) 2024-01-11 at 14:02 By Helga Labus Cisco has fixed a critical vulnerability (CVE-2024-20272) in Cisco Unity Connection that could allow an unauthenticated attacker to upload arbitrary files and gain root privilege on the affected system. Cisco Unity Connection is a unified messaging and

Critical Cisco Unity Connection flaw gives attackers root privileges. Patch now! (CVE-2024-20272) Read More »

Attackers could use vulnerabilities in Bosch Rexroth nutrunners to disrupt automotive production

automotive security, Don't miss, Hot stuff, manufacturing sector, News, Nozomi Networks, Ransomware, research, vulnerability / SecurityTicks

Attackers could use vulnerabilities in Bosch Rexroth nutrunners to disrupt automotive production 2024-01-09 at 17:46 By Zeljka Zorz Researchers have discovered over two dozen vulnerabilities in “smart” cordless nutrunners (i.e., pneumatic torque wrenches) manufactured by Bosch Rexroth that could be exploited to make the devices inoperable or their output unreliable. “Depending on a manufacturer’s use

Attackers could use vulnerabilities in Bosch Rexroth nutrunners to disrupt automotive production Read More »