Cybersecurity - The Stack (Page 7)

The Stack

Sign in Subscribe

Cybersecurity

A collection of 530 posts

Fortinet exploits: Attackers tampered with firewall firmware

Fortinet exploits: Attackers tampered with firewall firmware

“System enters error-mode due to FIPS error: Firmware Integrity self-test failed” suggests compromises.

Veeam urges “immediate” updates after vulnerability exposes backup hosts

Veeam urges “immediate” updates after vulnerability exposes backup hosts

This may generate a lot of Black Hat interest...

This critical Microsoft Word RCE exploit requires just a few lines of code: We need more CHERI

This critical Microsoft Word RCE exploit requires just a few lines of code: We need more CHERI

POC lands for CVSS 9.8 Word bug CVE-2023-21716

US agencies warn over "Royal" ransomware rise

US agencies warn over "Royal" ransomware rise

Phishing is key threat vector and a Blue Team bête noire...

Server backup vulnerability piggybacked to live systems

Server backup vulnerability piggybacked to live systems

Open source bug leads to server backup bug leads to... crime.

New LastPass breach post-mortem raises questions

New LastPass breach post-mortem raises questions

Attackers targeted DevOps engineers' home devices...

Pentagon CIOs slapped over cloud security by auditors days before 3TB of emails exposed

Pentagon CIOs slapped over cloud security by auditors days before 3TB of emails exposed

Days before the exposure this week of over three terabytes of military emails owing to misconfigured Azure services, the US Department of Defense (DoD)’s Inspector General had warned Pentagon CIOs that their teams were not properly reviewing documentation designed to ensure military cloud security – and running systems with unmitigated

IBM high speed file transfer software exploited by hackers

IBM high speed file transfer software exploited by hackers

A pre-auth RCE in IBM Aspera Faspex is being exploited in the wild

AWS EC2 permissions configuration change draws cheers, confusion

AWS EC2 permissions configuration change draws cheers, confusion

What... what's happening here exactly?

GoDaddy punched in the cPanel server by hackers

GoDaddy punched in the cPanel server by hackers

Pshaw “no material adverse impact”

FBI says cyber incident is “contained” after apparent child sexual abuse systems breach

FBI says cyber incident is “contained” after apparent child sexual abuse systems breach

Did malware-riddled digital evidence evade scans before upload?

Hackers eye “Havoc” for C2 diversity, as Cobalt Strike detections improve

Hackers eye “Havoc” for C2 diversity, as Cobalt Strike detections improve

Hackers appear to be increasingly adopting the Havoc command and control (C2) framework, security researchers say. The open source framework, developed by C5pider, supports the building of offensive agents in several formats including Windows PE executable, PE DLL and shellcode and is an alternative to the paid for (or cracked)

Microsoft’s Valentine’s Day gift: Patches for 3 CVEs being exploited

Microsoft’s Valentine’s Day gift: Patches for 3 CVEs being exploited

February’s Patch Tuesday brings the post-Valentine’s Day hangover of 75 bug fixes from Microsoft including three for CVEs known to be exploited in the wild: CVE-2023-21715, CVE-2023-23376 , and CVE-2023-21823. Strikingly, more than half of the bugs fixed this month are remote code execution (RCE) vulnerabilities. (A record 26,

This critical enterprise file transfer software is being actively exploited

This critical enterprise file transfer software is being actively exploited

In early 2021 a successful attack by hackers on Accellion, a file transfer service provider, resulted in significant repercussions downstream: Energy supermajor Shell, global law firm Goodwin Procter, and investment bank Morgan Stanley were among the blue chips that saw data stolen as a result. Now a critical vulnerability in

Over 83,000 ESXi servers are internet-exposed as mass attack continues

Over 83,000 ESXi servers are internet-exposed as mass attack continues

VMware denies zero day being used

Securing cloud-native architecture at scale: From runtime to remediation

Securing cloud-native architecture at scale: From runtime to remediation

The way we instrument for security doesn't require us to put out 25 different agents

VMware ESXi ransomware attacks continue: 500+ hit

VMware ESXi ransomware attacks continue: 500+ hit

This story has been updated here on February 8. Security researchers are reporting an explosion in the compromise of VMware ESXi hypervisors with over 500 machines hit by ransomware this weekend, with the automated attacks likely exploiting CVE-2021-21974. As The Stack published, some 20 ESXi machines were reportedly being ransomed

ION Ransomware attack hits markets -- Here are some key lessons from an earlier DXC attack

ION Ransomware attack hits markets -- Here are some key lessons from an earlier DXC attack

Five key lessons from a previous attack on a major software provider

22,600+ emails = 599 vulnerabilities. Security disclosure triage is HARD

22,600+ emails = 599 vulnerabilities. Security disclosure triage is HARD

Security researchers regularly chafe at the deafening silence when they report a critical vulnerability in software: White Hats simply wanting to help organisations fix their cybersecurity all too often still find themselves being ignored – or worse, threatened with legal action when trying to help publicly exposed organisations that have not

Government “must avoid a ban on ransomware payments” say insurers

Government “must avoid a ban on ransomware payments” say insurers

"If a ban is considered the Government should be ready to step in..."

Exploit released for critical new VMware vRealize Log Insight RCE bugs

Exploit released for critical new VMware vRealize Log Insight RCE bugs

Security researchers have published a proof-of-concept (POC) exploit that lets remote and unauthenticated attackers take over VMware vRealize Log Insight as root user by chaining three recent vulnerabilities. vRealize Log Insight is VMware’s log management tool for infrastructure and applications which boasts “actionable dashboards… and broad third-party extensibility across

Critical controller bug could trigger traffic chaos: Software vendor ignores CISA outreach

Critical controller bug could trigger traffic chaos: Software vendor ignores CISA outreach

One of 14 new advisories on vulnerable ICS software...

Windows CryptoAPI bug reported by NSA: Proof-of-Concept lands

Windows CryptoAPI bug reported by NSA: Proof-of-Concept lands

Worth double-checking for exposure...

Severe Python vulnerability patched in 61,000 projects: Bug remains rife downstream

Severe Python vulnerability patched in 61,000 projects: Bug remains rife downstream

Heroic effort by Trellix but risks abound still...