Cyber security aggregate rss news

Cyber security aggregator - feeds history

totals: cyware (5) packetstormsecurity (26) thehackernews (1) grahamcluley (1)

Update: Exploit Released for Critical VMware SSH Authentication Bypass Vulnerability

cyware Sep 02, 2023 Malware and Vulnerabilities

The proof-of-concept (PoC) exploit targets all Aria Operations for Networks versions from 6.0 to 6.10, and it was developed and released by Summoning Team vulnerability researcher Sina Kheirkhah.

VMConnect Supply Chain Attack Persists

cyware Sep 02, 2023 Breaches and Incidents

ReversingLabs identified three new malicious Python packages on PyPI, which are linked to a previously discovered VMConnect campaign. Analysis of the packages reveals similarities to previous supply chain attacks attributed to the Lazarus Group. To protect against such threats, organizations must invest in training and awareness against typosquatting and other impersonation attacks and bolster their defenses.

Pennsylvania School District to Stay Open Despite Ransomware Attack

cyware Sep 02, 2023 Breaches and Incidents

On Thursday, the Chambersburg Area School District published a message on its website and social media channels announcing that it had become yet another K-12 school district attacked by a ransomware gang.

Threat Actors Targeting Microsoft SQL Servers to Deploy FreeWorld Ransomware

cyware Sep 02, 2023 Malware and Vulnerabilities

Cybersecurity firm Securonix, which has dubbed the campaign DB#JAMMER, said it stands out for the way the toolset and infrastructure are employed against poorly secured Microsoft SQL servers.

Okta Warns of Social Engineering Attacks Targeting Super Administrator Privileges

cyware Sep 02, 2023 Breaches and Incidents

Central to the attacks is a commercial phishing kit called 0ktapus, which offers pre-made templates to create realistic fake authentication portals and ultimately harvest credentials and MFA codes. It also has a built-in C2 channel via Telegram.

Cybercrime To Cost Germany 206 Billion Euros In 2023, Survey Finds

packetstormsecurity Sep 02, 2023 headline,cybercrime,germany

X, AKA Twitter, To Collect Biometric And Employment Data

packetstormsecurity Sep 02, 2023 headline,privacy,data loss,twitter

VMConnect Campaign Linked To North Korea's Lazarus Group

packetstormsecurity Sep 02, 2023 headline,hacker,government,malware,cyber

Hacker Gains Admin Control Of Sourcegraph And Gives Free Access

packetstormsecurity Sep 02, 2023 headline,hacker,password,backdoor

More Okta Customers Trapped In Scattered Spider's Web

packetstormsecurity Sep 02, 2023 headline,hacker,data loss,password

Packet Storm New Exploits For August, 2023

packetstormsecurity Sep 02, 2023 Feed

This archive contains all of the 305 exploits added to Packet Storm in August, 2023.

Tinycontrol LAN Controller 3 Remote Admin Password Change

packetstormsecurity Sep 02, 2023 Feed

Tinycontrol LAN Controller version 3 suffers from an insecure access control allowing an unauthenticated attacker to change accounts passwords and bypass authentication gaining panel control access.

Tinycontrol LAN Controller 3 Remote Credential Extraction

packetstormsecurity Sep 02, 2023 Feed

Tinycontrol LAN Controller version 3 suffers from an issue where an unauthenticated attacker can retrieve the controller's configuration backup file and extract sensitive information that can allow him/her/them to bypass security controls and penetrate the system in its entirety.

Tinycontrol LAN Controller 3 Denial Of Service

packetstormsecurity Sep 02, 2023 Feed

Tinycontrol LAN Controller version 3 suffers from an unauthenticated remote denial of service vulnerability. An attacker can issue direct requests to the stm.cgi page to reboot and also reset factory settings on the device.

Debian Security Advisory 5487-1

packetstormsecurity Sep 02, 2023 Feed

Debian Linux Security Advisory 5487-1 - A security issue was discovered in Chromium, which could result in the execution of arbitrary code.

Ubuntu Security Notice USN-6332-1

packetstormsecurity Sep 02, 2023 Feed

Ubuntu Security Notice 6332-1 - Daniel Moghimi discovered that some Intel Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. William Zhao discovered that the Traffic Control show more ...

subsystem in the Linux kernel did not properly handle network packet retransmission in certain situations. A local attacker could use this to cause a denial of service.

VMWare Aria Operations For Networks Remote Code Execution

packetstormsecurity Sep 02, 2023 Feed

VMWare Aria Operations for Networks (vRealize Network Insight) static SSH key remote code execution proof of concept exploit.

Ubuntu Security Notice USN-6331-1

packetstormsecurity Sep 02, 2023 Feed

Ubuntu Security Notice 6331-1 - It was discovered that the netlink implementation in the Linux kernel did not properly validate policies when parsing attributes in some situations. An attacker could use this to cause a denial of service. Billy Jheng Bing Jhong discovered that the CIFS network file system show more ...

implementation in the Linux kernel did not properly validate arguments to ioctl in some situations. A local attacker could possibly use this to cause a denial of service.

Microsoft Windows Kernel Use-After-Free

packetstormsecurity Sep 02, 2023 Feed

Microsoft Windows Kernel renaming layered keys does not reference count security descriptors, leading to a use-after-free condition.

Ubuntu Security Notice USN-6330-1

packetstormsecurity Sep 02, 2023 Feed

Ubuntu Security Notice 6330-1 - Daniel Moghimi discovered that some Intel Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. Tavis Ormandy discovered that some AMD processors did show more ...

not properly handle speculative execution of certain vector register instructions. A local attacker could use this to expose sensitive information.

Oracle RMAN Missing Auditing

packetstormsecurity Sep 02, 2023 Feed

Proof of concept exploit for Oracle RMAN on Oracle database versions 19c, 18c, 12.2.0.1, and 12.1.0.2 where an RMAN controlfile operation is not adequately logged.

PlayTube 3.0.1 Information Disclosure

packetstormsecurity Sep 02, 2023 Feed

PlayTube version 3.0.1 suffers from an information leakage vulnerability.

Clcknshop 1.0.0 SQL Injection

packetstormsecurity Sep 02, 2023 Feed

Clcknshop version 1.0.0 suffers from a remote SQL injection vulnerability.

Clcknshop 1.0.0 Cross Site Scripting

packetstormsecurity Sep 02, 2023 Feed

Clcknshop version 1.0.0 suffers from a cross site scripting vulnerability.

Ubuntu Security Notice USN-6329-1

packetstormsecurity Sep 02, 2023 Feed

Ubuntu Security Notice 6329-1 - Daniel Moghimi discovered that some Intel Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. Tavis Ormandy discovered that some AMD processors did show more ...

not properly handle speculative execution of certain vector register instructions. A local attacker could use this to expose sensitive information.

Ubuntu Security Notice USN-6328-1

packetstormsecurity Sep 02, 2023 Feed

Ubuntu Security Notice 6328-1 - Daniel Moghimi discovered that some Intel Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. Tavis Ormandy discovered that some AMD processors did show more ...

not properly handle speculative execution of certain vector register instructions. A local attacker could use this to expose sensitive information.

Ubuntu Security Notice USN-6327-1

packetstormsecurity Sep 02, 2023 Feed

Ubuntu Security Notice 6327-1 - Zheng Zhang discovered that the device-mapper implementation in the Linux kernel did not properly handle locking during table_clear operations. A local attacker could use this to cause a denial of service. It was discovered that a use-after-free vulnerability existed in the HFS+ file show more ...

system implementation in the Linux kernel. A local attacker could possibly use this to cause a denial of service.

Ubuntu Security Notice USN-6326-1

packetstormsecurity Sep 02, 2023 Feed

Ubuntu Security Notice 6326-1 - It was discovered that GitPython did not block insecure options from user inputs in the clone command. An attacker could possibly use this issue to execute arbitrary commands on the host.

Red Hat Security Advisory 2023-4921-01

packetstormsecurity Sep 02, 2023 Feed

Red Hat Security Advisory 2023-4921-01 - Red Hat Single Sign-On is an integrated sign-on solution, available as a Red Hat JBoss Middleware for OpenShift containerized image. The Red Hat Single Sign-On for OpenShift image provides an authentication server that you can use to log in centrally, log out, and register. You show more ...

can also manage user accounts for web applications, mobile applications, and RESTful web services. This erratum releases a new image for Red Hat Single Sign-On 7.6.5 for use within the OpenShift Container Platform 3.10, OpenShift Container Platform 3.11, and within the OpenShift Container Platform 4.3 cloud computing Platform-as-a-Service for on-premise or private cloud deployments, aligning with the standalone product release. Issues addressed include a denial of service vulnerability.

Red Hat Security Advisory 2023-4919-01

packetstormsecurity Sep 02, 2023 Feed

Red Hat Security Advisory 2023-4919-01 - Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.6.5 on RHEL 8 serves as a replacement for Red show more ...

Hat Single Sign-On 7.6.4, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include a denial of service vulnerability.

Red Hat Security Advisory 2023-4918-01

packetstormsecurity Sep 02, 2023 Feed

Red Hat Security Advisory 2023-4918-01 - Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.6.5 on RHEL 7 serves as a replacement for Red show more ...

Hat Single Sign-On 7.6.4, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include a denial of service vulnerability.

Okta Warns of Social Engineering Attacks Targeting Super Administrator Privileges

thehackernews Sep 02, 2023 Feed

Identity services provider Okta on Friday warned of social engineering attacks orchestrated by threat actors to obtain elevated administrator permissions. “In recent weeks, multiple US-based Okta customers have reported a consistent pattern of social engineering attacks against IT service desk personnel, in which the caller’s strategy was to convince service desk personnel to reset all

Freecycle users told to change passwords after data breach

grahamcluley Sep 02, 2023 Data loss

Freecycle, an online community that encourages sharing unwanted items with eachother than chucking them in the bin or taking them to landfill, has told users to change their passwords after it suffered a data breach.

2023-09

202020212022202320242025

Aggregator history

Saturday, September 02

FRI

SAT

SUN

MON

TUE

WED

THU