Security experts are ratcheting up the urgency for Windows admins to patch a wormable, pre-auth remote code execution vulnerability in the Windows TCP/IP stack.
SolarWinds is advising customers to upgrade their Web Help Desk platform due to a critical vulnerability, CVE-2024-28986, discovered by Inmarsat Government researchers. The bug allows for remote code execution through Java deserialization.
The attacks, detected on June 20, 2024, show threat actors using various tools like AnyDesk and AntiSpam.exe to harvest credentials. They also deploy payloads like Golang HTTP beacons and Socks proxy beacons.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-15 16:07:022024-08-15 16:07:02Black Basta Ransomware Gang Linked to a Malware Campaign
SolarWinds has released patches to address a critical security vulnerability in its Web Help Desk software that could be exploited to execute arbitrary code on susceptible instances.
The flaw, tracked as CVE-2024-28986 (CVSS score: 9.8), has been described as a deserialization bug.
“SolarWinds Web Help Desk was found to be susceptible to a Java deserialization remote code execution vulnerability
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-15 15:06:382024-08-15 15:06:38SolarWinds Releases Patch for Critical Flaw in Web Help Desk Software
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-15 14:06:452024-08-15 14:06:45Beyond the Hype: Unveiling the Realities of WormGPT in Cybersecurity
Russian and Belarusian non-profit organizations, Russian independent media, and international non-governmental organizations active in Eastern Europe have become the target of two separate spear-phishing campaigns orchestrated by threat actors whose interests align with that of the Russian government.
While one of the campaigns – dubbed River of Phish – has been attributed to COLDRIVER, an
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-15 13:06:342024-08-15 13:06:34Russian-Linked Hackers Target Eastern European NGOs and Media
Inconsistencies and lack of information in cybersecurity disclosures highlight the need for organizations to establish a robust materiality assessment framework.
A fix is coming, but data analytics giant Palantir says it’s ditching Android devices altogether because Google’s response to the vulnerability has been troubling.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-15 13:06:332024-08-15 13:06:33Nearly All Google Pixel Phones Are Left Exposed by Unpatched Flaw in Hidden Android App
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-15 13:06:332024-08-15 13:06:33SolarWinds Issues Hotfix for Critical Web Help Desk Vulnerability
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw
/in General NewsSecurity experts are ratcheting up the urgency for Windows admins to patch a wormable, pre-auth remote code execution vulnerability in the Windows TCP/IP stack.
The post Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw appeared first on SecurityWeek.
SecurityWeek – Read More
SolarWinds Urges Upgrade After Revealing Critical RCE Bug
/in General NewsSolarWinds is advising customers to upgrade their Web Help Desk platform due to a critical vulnerability, CVE-2024-28986, discovered by Inmarsat Government researchers. The bug allows for remote code execution through Java deserialization.
Cyware News – Latest Cyber News – Read More
Black Basta Ransomware Gang Linked to a Malware Campaign
/in General NewsThe attacks, detected on June 20, 2024, show threat actors using various tools like AnyDesk and AntiSpam.exe to harvest credentials. They also deploy payloads like Golang HTTP beacons and Socks proxy beacons.
Cyware News – Latest Cyber News – Read More
SolarWinds Releases Patch for Critical Flaw in Web Help Desk Software
/in General NewsSolarWinds has released patches to address a critical security vulnerability in its Web Help Desk software that could be exploited to execute arbitrary code on susceptible instances.
The flaw, tracked as CVE-2024-28986 (CVSS score: 9.8), has been described as a deserialization bug.
“SolarWinds Web Help Desk was found to be susceptible to a Java deserialization remote code execution vulnerability
The Hacker News – Read More
Ransomware Attacks on Industrial Firms Surged in Q2 2024
/in General NewsDragos has seen a significant increase in ransomware attacks on industrial organizations in Q2 2024 compared to the previous quarter.
The post Ransomware Attacks on Industrial Firms Surged in Q2 2024 appeared first on SecurityWeek.
SecurityWeek – Read More
Beyond the Hype: Unveiling the Realities of WormGPT in Cybersecurity
/in General NewsThough WormGPT tools may not be a major problem now, organizations can’t let their guard down.
darkreading – Read More
Russian-Linked Hackers Target Eastern European NGOs and Media
/in General NewsRussian and Belarusian non-profit organizations, Russian independent media, and international non-governmental organizations active in Eastern Europe have become the target of two separate spear-phishing campaigns orchestrated by threat actors whose interests align with that of the Russian government.
While one of the campaigns – dubbed River of Phish – has been attributed to COLDRIVER, an
The Hacker News – Read More
How Can Organizations Navigate SEC’s Cyber Materiality Disclosures?
/in General NewsInconsistencies and lack of information in cybersecurity disclosures highlight the need for organizations to establish a robust materiality assessment framework.
darkreading – Read More
Nearly All Google Pixel Phones Are Left Exposed by Unpatched Flaw in Hidden Android App
/in General NewsA fix is coming, but data analytics giant Palantir says it’s ditching Android devices altogether because Google’s response to the vulnerability has been troubling.
Security Latest – Read More
SolarWinds Issues Hotfix for Critical Web Help Desk Vulnerability
/in General NewsSolarWinds has released a hotfix for a critical Java deserialization remote code execution vulnerability in Web Help Desk.
The post SolarWinds Issues Hotfix for Critical Web Help Desk Vulnerability appeared first on SecurityWeek.
SecurityWeek – Read More