PT-2024-12945 · Victure · Victure Pc420

Name of the Vulnerable Software and Affected Versions: Victure PC420 version 1.1.39 Description: The issue is related to the use of a weak and partially hardcoded key for data encryption. Recommendations: For Victure PC420 version 1.1.39, at the moment, there is no information about a newer versi...

CVE-2023-41611

Victure PC420 1.1.39 was discovered to use a weak and partially hardcoded key to encrypt data...

Siemens Industrial Product Null Pointer Dereference Vulnerability

SIMATIC CP 1242 and CP 1243 associated processors connect SIMATIC S7-1200 controllers to a wide area network WAN. They provide integrated security features such as firewalls, virtual private networks VPNs, and support for other data encryption protocols.SIMATIC HMI Panels are used for operator...

The vulnerability of the KV Service component in the Couchbase Server database management system for NoSQL databases allows attackers to disclose sensitive information.

The vulnerability of the KV Service component in the Couchbase Server database management system for NoSQL databases is related to insufficiently secure data encryption. Exploiting this vulnerability could allow a malicious actor to disclose sensitive information...

The vulnerability of IBM QRadar Network Packet Capture in capturing network traffic lies in the lack of data encryption measures, which allows attackers to disclose protected information.

The vulnerability of IBM QRadar Network Packet Capture relates to the lack of measures for data encryption. Exploiting this vulnerability could allow a malicious actor to disclose protected information by executing a “man-in-the-middle” attack...

The vulnerability of the exacqVision Client and exacqVision Server software is related to insufficiently secure data encryption. This allows unauthorized access to protected information.

The vulnerability of the exacqVision Client and exacqVision Server software is related to insufficiently secure data encryption. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

New Qilin Ransomware Attack Uses VPN Credentials, Steals Chrome Data

The threat actors behind a recently observed Qilin ransomware attack have stolen credentials stored in Google Chrome browsers on a small set of compromised endpoints. The use of credential harvesting in connection with a ransomware infection marks an unusual twist, and one that could have cascadi...

CVE-2024-45165

An issue was discovered in UCI IDOL 2 aka uciIDOL or IDOL2 through 2.12. Data is sent between client and server with encryption. However, the key is derived from the string "c2007 UCI Software GmbH B.Boll" without quotes. The key is both static and hardcoded. With access to messages, this results...

CVE-2024-43378 calamares-nixos-extensions LUKS keyfile exposure regression on legacy BIOS systems

calamares-nixos-extensions provides Calamares branding and modules for NixOS, a distribution of GNU/Linux. Users who installed NixOS through the graphical installer who used manual disk partitioning to create a setup where the system was booted via legacy BIOS rather than UEFI; some disk partitio...

The vulnerability of the SQL engine of the Dell Data Analytics Engine (DDAE) in the Dell Data Lakehouse data storage platform allows a hacker to disclose protected information.

The vulnerability of the SQL engine of the Dell Data Analytics Engine DDAE in the Dell Data Lakehouse data storage platform is related to the lack of data encryption measures. Exploiting this vulnerability could allow a malicious actor to disclose protected information...

Inside the ransomware playbook: Analyzing attack chains and mapping common TTPs

Given the recent slate of massive ransomware attacks that have disrupted everything from hospitals to car dealerships, Cisco Talos wanted to take a renewed look at the top ransomware players to see where the current landscape stands. Based on a comprehensive review of more than a dozen prominent...

CVE-2024-39846

NewPass before 1.2.0 stores passwords rather than password hashes directly, which makes it easier to obtain unauthorized access to sensitive information. NOTE: in each case, data at rest is encrypted, but is decrypted within process memory during use...

CVE-2024-39846

NewPass before 1.2.0 stores passwords rather than password hashes directly, which makes it easier to obtain unauthorized access to sensitive information. NOTE: in each case, data at rest is encrypted, but is decrypted within process memory during use...

P2Pinfect Botnet Now Targets Servers with Ransomware, Cryptominer

The P2Pinfect botnet, once dormant, is now attacking servers with ransomware and cryptomining malware. Patch your systems to avoid data encryption and financial loss...

Chinese and N. Korean Hackers Target Global Infrastructure with Ransomware

Threat actors with suspected ties to China and North Korea have been linked to ransomware and data encryption attacks targeting government and critical infrastructure sectors across the world between 2021 and 2023. While one cluster of activity has been associated with the ChamelGang aka CamoFei,...

PT-2024-5971 · Couchbase · Couchbase Server

Name of the Vulnerable Software and Affected Versions: Couchbase Server versions prior to 7.2.5 Couchbase Server versions 7.6.0 through 7.6.0 Description: The issue is related to insufficient encryption of data in the Key-Value KV service of Couchbase Server. This could allow a remote attacker to...

The vulnerability of GE HealthCare EchoPAC medical software, related to the lack of data encryption measures, allows unauthorized access to protected information by intruders.

The vulnerability of GE HealthCare EchoPAC medical software is related to the lack of data encryption measures. Exploiting this vulnerability could allow an unauthorized attacker to gain unauthorized access to protected information...

Black Basta Ransomware Strikes 500+ Entities Across North America, Europe, and Australia

The Black Basta ransomware-as-a-service RaaS operation has targeted more than 500 private industry and critical infrastructure entities in North America, Europe, and Australia since its emergence in April 2022. In a joint advisory published by the Cybersecurity and Infrastructure Security Agency...

Assess, Remediate, and Prevent the Top 10 MITRE ATT&CK Techniques for Ransomware, Mapped to Misconfigurations

In cybersecurity, the battle against ransomware is a pivotal challenge for organizations worldwide. Attackers are consistently refining their methods, highlighting the critical need for businesses to remain proactive in their defense strategies. To effectively address this threat, it is essential...

Akira Ransomware Nets $42 Million from 250+ Victims

...