A security update has been released by VMware to patch two vulnerabilities in VMware Aria Operations for Logs products, which were previously called vRealize Log Insight. VMware vRealize Log Insight products had multiple remote code execution vulnerabilities that were addressed in January which could be exploited together in an attack chain. This new update addresses […]
Critical Vulnerabilities Patched by VMware Read More »
Unpatched Cisco IOS routers are being targeted by Russian state-backed threat actor APT28 to deploy ‘Jaguar Tooth’ malware by exploiting a vulnerability from 2017. The National Cyber Security Centre (NCSC) have published a malware analysis report investigating this non-persistent malware recently seen to be infecting Cisco IOS routers using firmware C5350-IS-M version 12.3(6). A joint
NCSC Warn of Jaguar Tooth Malware on Cisco Routers Read More »
The threat actor known as Vice Society, a ransomware gang known for their attacks against the education sector in the USA, has recently been found to use a custom Microsoft PowerShell (PS) script for exfiltrating data from their victims. This threat actor previously used PS scripts staged on a domain controller to perform a range
Vice Society Use Automated Data Exfiltration Read More »
Emergency security updates have been released by Apple for macOS, iOS, iPadOS, and Safari to patch two zero-day vulnerabilities, one of which has a publicly disclosed exploit. The other zero-day flaw addressed in these updates is also reported to be actively exploited in the wild. These emergency updates by Apple have been published less than
Apple Patch Zero-Day with Publicly Disclosed Exploit Read More »
HP Enterprise LaserJet and HP LaserJet Managed printers that use FutureSmart version 5.6 and have enabled IPsec could be vulnerable to a disclosed, unpatched, critical severity vulnerability that HP have warned will take 90 days to remediate. A security bulletin was released by HP this week to inform customers of this vulnerability which includes an
Critical Vulnerability in HP Enterprise Printers Read More »
A high severity vulnerability in WordPress plugin Elementor Pro has been found to be actively exploited. The plugin WooCommerce must also be running on the same site in order for this exploit to take place. The payment plugin WooCommerce was force-updated in March to patch a critical vulnerability that let unauthenticated attackers gain admin access
WordPress Elementor Pro Plugin Flaw Exploited Read More »
Adversary in the middle (AiTM) is a phishing attack technique in which a proxy server is deployed between the victim and the website they are attempting to access. This allows for the attacker to be placed ‘in the middle’ of the victim and the target website, allowing the attacker to intercept and steal the victim’s
Open-Source Phishing Kit Used in AiTM Attacks Read More »
Proof of concept (PoC) code has been released for a cross-platform exploit that can be performed on unpatched Veeam Backup & Replication (VBR) software. Veeam are a data security organisation whose backup and recovery software is used as both on-premises and cloud-based data protection solutions. Security updates to patch the exploitable vulnerability were released earlier
Veeam Vulnerability Exploit Code Released Read More »
Security updates for macOS Ventura, macOS Monterey, and macOS Big Sur have been released to address the security vulnerabilities found in these systems. Four critical severity vulnerabilities are included in these updates, all with a CVSS base score of 9.8/10. Not a lot of information is currently available about these flaws, as Apple doesn’t disclose
Apple Release Critical MacOS Vulnerability Updates Read More »
A critical arbitrary code execution vulnerability is being actively exploited in unpatched Adobe ColdFusion versions 2018 and 2021. A security bulletin was released by Adobe to inform users of this actively exploited vulnerability, along with two other vulnerabilities patched in the same update, a critical severity deserialisation flaw and a memory leak path traversal vulnerability.
Adobe ColdFusion Vulnerability Actively Exploited Read More »