Aggregator

A vulnerability was found in Kastle Systems Access Control System. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cleartext storage of sensitive information. This vulnerability is known as CVE-2024-45862. The attack can be launched remotely. There is no exploit available. This product is available as a managed service. Users are not able to maintain vulnerability countermeasures themselves.

Submit #408299 / VDB-278163

Submit #408298 / VDB-278162

A vulnerability was found in Kastle Systems Access Control System. It has been classified as critical. Affected is an unknown function. The manipulation leads to hard-coded credentials. This vulnerability is traded as CVE-2024-45861. It is possible to launch the attack remotely. There is no exploit available. This product is a managed service. This means that users are not able to maintain vulnerability countermeasures themselves.

A vulnerability was found in MegaSys Computer Technologies Telenium Online Web Application up to 8.3 and classified as very critical. This issue affects some unknown processing of the component HTTP Handler. The manipulation leads to code injection. The identification of this vulnerability is CVE-2024-6404. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A joint law enforcement operation has dismantled an international criminal network that used the iServer automated phishing-as-a-service platform to unlock the stolen or lost mobile phones of 483,000 victims worldwide.  [...]

A vulnerability has been found in FreeBSD and classified as critical. This vulnerability affects unknown code of the component bhyve. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2024-41721. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

世界最大排放国的排放可能提前达到峰值，远早于此前承诺的 2030 年。分析师 Dave Jones 表示，一旦中国的排放达到峰值，全世界的排放可能很快也会达到峰值。跟踪中国排放的分析师 Lauri Myllyvirta 通过分析来自中国政府、行业机构和商业公司的能源、工业和海关数据计算每月二氧化碳排放量。自 3 月以来，中国排放量一直在下降。这表明 2023 年中国的碳排放可能达到了峰值。驱动排放下降趋势的主要是清洁能源的增长。中国的排放此前发生过波动， 2013-2016 年减少煤炭使用推动了中国排放下降，但之后煤炭恢复增长后排放也恢复了增长。分析师表示可能需要一年的时间才能知道排放下降是短期还是长期现象。

A vulnerability, which was classified as problematic, was found in Dassault Systèmes 3DSwymer up to R2024x. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-7737. It is possible to initiate the attack remotely. There is no exploit available.

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft Windows, Apache HugeGraph-Server, Oracle JDeveloper, Oracle WebLogic Server, and Microsoft SQL Server bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added SonicWall SonicOS, ImageMagick and Linux Kernel vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. Below are the descriptions for these […]

A vulnerability, which was classified as problematic, has been found in Dassault Systèmes ENOVIA Collaborative Industry Innovator up to R2024x. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-7736. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as critical was found in logiops up to 0.3.4. Affected by this vulnerability is an unknown functionality of the component logid Daemon. The manipulation leads to improper access controls. This vulnerability is known as CVE-2024-45752. The attack needs to be done within the local network. There is no exploit available.

Researchers discovered a large, Chinese state-sponsored IoT botnet, “Raptor Train,” that compromised over 200,000 SOHO and IoT devices. Operated by Flax Typhoon, the botnet leveraged a sophisticated control system, “Sparrow,” to manage its extensive network.  The botnet posed a significant threat to various sectors, including military, government, and IT, with the potential for DDoS attacks […]

The post Researchers Detailed Raptor Train Botnet That 60,000+ Compromised Devices appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Researchers identified an attack campaign targeting poorly secured Linux SSH servers, where the attack leverages Supershell, a cross-platform reverse shell backdoor written in Go, granting attackers remote control of compromised systems.  Following the initial infection, attackers are suspected to have deployed scanners to identify additional vulnerable targets and then likely launched dictionary attacks on these […]

The post Hackers Using Supershell Malware To Attack Linux SSH Servers appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Threat actors have been observed targeting the construction sector by infiltrating the FOUNDATION Accounting Software, according to new findings from Huntress. "Attackers have been observed brute-forcing the software at scale, and gaining access simply by using the product’s default credentials," the cybersecurity company said. Targets of the emerging threat include plumbing, HVAC (heating,

Recent intelligence indicates a new technique employed by stealers to trick victims into entering credentials directly into a browser, enabling subsequent theft from the browser’s credential store. This method, used in conjunction with StealC malware, was first observed in August 2024 and is primarily deployed by Amadey. The technique involves forcing victims to interact with […]

The post Threat Actors Forcing victims Into Entering Login Credentials For Stealing appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability was found in EDraw Office Viewer Component. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file edrawofficeviewer.ocx of the component ActiveX Control. The manipulation leads to memory corruption. This vulnerability is known as CVE-2007-3168. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

SambaSpy Attacking Windows Users With Weaponized PDF FilesResearchers discovered a targeted cybercrime campaign in May 2024 that exclusively focused on Italian victims, which was unusual as attackers typically aim for broader targets to increase profits.  However, this campaign implemented checks at different stages of the infection chain to ensure only Italian users were affected, which […]

The post SambaSpy Using Weaponized PDF Files to Attack Windows Users appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability classified as critical was found in Clear Clearspot 1.9.9.4. Affected by this vulnerability is the function Admin of the file webmain.cgi of the component Remote Management. The manipulation of the argument FILE_PATH leads to cross-site request forgery. This vulnerability is known as CVE-2010-4507. The attack can be launched remotely. Furthermore, there is an exploit available.

In the realm of Red Team operations, one advanced technique involves exploiting hardware reset functionalities to disrupt critical systems and gain unauthorized access. This approach capitalizes on the inherent vulnerability of various devices to fac...