17 matches found
EUVD-2020-27064
Malware in sbrugna...
CVE-2020-5910
In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the Neural Autonomic Transport System NATS messaging services in use by the NGINX Controller do not require any form of authentication, so any successful connection would be authorized...
'eXotic Visit' Spyware Campaign Targets Android Users in India and Pakistan
An active Android malware campaign dubbed eXotic Visit has been primarily targeting users in South Asia, particularly those in India and Pakistan, with malware distributed via dedicated websites and Google Play Store. Slovak cybersecurity firm said the activity, ongoing since November 2021, is no...
Apache ActiveMQ Remote Code Execution Vulnerability (CNVD-2023-80853)
Apache ActiveMQ is the United States Apache Apache Foundation of a set of open source messaging middleware , which supports Java messaging services , clustering , Spring Framework and so on. Apache ActiveMQ remote code execution vulnerability , when an unauthenticated attacker can use the...
DarkGate Malware Spreading via Messaging Services Posing as PDF Files
A piece of malware known as DarkGate has been observed being spread via instant messaging platforms such as Skype and Microsoft Teams. In these attacks, the messaging apps are used to deliver a Visual Basic for Applications VBA loader script that masquerades as a PDF document, which, when opened,...
CVE-2022-20696 Cisco SD-WAN vManage Software Unauthenticated Access to Messaging Services Vulnerability
A vulnerability in the binding configuration of Cisco SD-WAN vManage Software containers could allow an unauthenticated, adjacent attacker who has access to the VPN0 logical network to also access the messaging service ports on an affected system. This vulnerability exists because the messaging...
Cisco SD-WAN vManage Software Unauthenticated Access to Messaging Services Vulnerability
A vulnerability in the binding configuration of Cisco SD-WAN vManage Software containers could allow an unauthenticated, adjacent attacker who has access to the VPN0 logical network to also access the messaging service ports on an affected system. This vulnerability exists because the messaging...
Cisco SD-WAN vManage Software Unauthenticated Access to Messaging Services (cisco-sa-vmanage-msg-serv-AqTup7vs)
According to its self-reported version, Cisco SD-WAN Viptela Software is affected by a vulnerability. - A vulnerability in the binding configuration of Cisco SD-WAN vManage Software containers could allow an unauthenticated, adjacent attacker who has access to the VPN0 logical network to also...
Connector Connectivity Check Tool Reporting unable to connect to messaging
When SSL decryption is enabled on certain proxies Ex: Barracuda, WebSense, some services may have trouble connecting to the platform...
CVE-2020-5910
In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the Neural Autonomic Transport System NATS messaging services in use by the NGINX Controller do not require any form of authentication, so any successful connection would be authorized...
CVE-2020-5910
CVE-2020-5910 affects NGINX Controller’s NATS messaging service. Affected versions are 3.0.0–3.5.0, 2.0.0–2.9.0, and 1.0.1, where NATS does not require authentication, allowing any successful connection to be authorized. Impact described includes potential eavesdropping and unauthorized access to...
How One Photo Could Have Hacked Your WhatsApp and Telegram Accounts
Next time when someone sends you a photo of a cute cat or a hot chick on WhatsApp or Telegram then be careful before you click on the image to view — it might hack your account within seconds. A new security vulnerability has recently been patched by two popular end-to-end encrypted messaging...
WhatsApp, Viber and Skype Internet Calls may No Longer be FREE in India
We all are aware of Net Neutrality and the recent controversies over it in India. Net Neutrality is simply the Internet Freedom — Free, Fast and Open Internet for all. India has been battling for Net Neutrality since zero-rating services such as Facebook’s Internet.org and Airtel Zero were...
XMPP Makes Encryption Mandatory for Instant Messaging Service Operators
The most popular open source Instant messaging application based on the ‘Extensible Messaging and Presence Protocol’ XMPP, formerly known as Jabber that enables you to connect with other people over the Internet will begin refusing unencrypted connections as from today. In an announcement...
South Korea defense bans Smartphones for data security
South Korea's Ministry of National Defense is banning its employees from using the smart phones inside of the ministry's building in a bid to prevent military data leaks. At present, the only way to ensure sensitive corporate and Defense data is not lost is to provide employees with devices owned...
Chat Bots Are Trying to Fake You Out
Web robots, commonly referred to as “bots,” are software programs written to do automated tasks, like crawling the Web looking for new sites. They also appear in chat rooms and instant messaging services masquerading as real people. Read the full article. cnet...
Exchange 2003 Core Product
...