Lucene search
K

1378 matches found

The Hacker News
The Hacker News
added 2022/06/03 9:19 a.m.219 views

Microsoft Blocks Iran-linked Lebanese Hackers Targeting Israeli Companies

Microsoft on Thursday said it took steps to disable malicious activity stemming from abuse of OneDrive by a previously undocumented threat actor it tracks under the chemical element-themed moniker Polonium. In addition to removing the offending accounts created by the Lebanon-based activity group...

9.8CVSS1.1AI score0.99999EPSS
Exploits22
ThreatPost
ThreatPost
added 2022/06/02 11:44 a.m.37 views

Scammers Target NFT Discord Channel

Discord a public chat application designed for gamers has grown popular among crypto owners all over the world. Attackers are targeting the Discord servers of several popular nonfungible token NFT projects. Josh Fraser founder of Origin protocol shared a thread on Twitter earlier this month,...

6.9AI score
Exploits0References7
Pen Test Partners Blog
Pen Test Partners Blog
added 2022/05/31 5:4 a.m.16 views

Your cloud? My cloud now

A true story on taking over a client’s Azure tenant via a successful phish. TL;DR A tempting phish got lots of users to disclose their passwords, and a lack of training resulted in the victims accepting the Microsoft push-based multi-factor authentication. This resulted in gaining access to Slack...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/05/27 12:27 p.m.16 views

Twitter fined $150M after using 2FA phone numbers for marketing

The Federal Trade Commission FTC and the Department of Justice DOJ have ordered Twitter to pay a $150M penalty for using users account security data deceptively. The deception violates an FTC order from 2011, that bars Twitter from "misleading consumers about the extent to which it protects the...

7.3AI score
Exploits0
Snyk
Snyk
added 2022/05/24 7:2 p.m.1 views

Access Control Bypass

Overview Affected versions of this package are vulnerable to Access Control Bypass in the MFAUserAccountSetupMVCActionCommand class that allows an authenticated used to deny service to another user by enabling the Time-based One-time password TOTP feature for their account, or by modifying the...

7.1CVSS7AI score0.01148EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2022/05/24 7:2 p.m.16 views

Liferay DXP Vulnerable to Denial-of-service (DoS) in the Multi-Factor Authentication Module

Denial-of-service DoS vulnerability in the Multi-Factor Authentication module in Liferay DXP 7.3 before fix pack 1 allows remote authenticated attackers to prevent any user from authenticating by 1 enabling Time-based One-time password TOTP on behalf of the other user or 2 modifying the other...

6.5CVSS6.7AI score0.01148EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2022/05/24 7:2 p.m.8 views

GHSA-82J7-2H3J-HC7F Liferay DXP Vulnerable to Denial-of-service (DoS) in the Multi-Factor Authentication Module

Denial-of-service DoS vulnerability in the Multi-Factor Authentication module in Liferay DXP 7.3 before fix pack 1 allows remote authenticated attackers to prevent any user from authenticating by 1 enabling Time-based One-time password TOTP on behalf of the other user or 2 modifying the other...

6.5CVSS6.7AI score0.01148EPSS
Exploits0References4
Malwarebytes
Malwarebytes
added 2022/05/24 1:0 p.m.60 views

General Motors suffers credential stuffing attack

American car manufacturer General Motors GM says it experienced a credential stuffing attack last month. During the attack customer information and reward points were stolen. The subject of the attack was an online platform, run by GM, to help owners of Chevrolet, Buick, GMC, and Cadillac vehicle...

1.5AI score
Exploits0
The Hacker News
The Hacker News
added 2022/05/24 12:2 p.m.38 views

SIM-based Authentication Aims to Transform Device Binding Security to End Phishing

Let's face it: we all use email, and we all use passwords. Passwords create inherent vulnerability in the system. The success rate of phishing attacks is skyrocketing, and opportunities for the attack have greatly multiplied as lives moved online. All it takes is one password to be compromised fo...

7.5AI score
Exploits0
Github Security Blog
Github Security Blog
added 2022/05/18 12:0 a.m.31 views

HashiCorp Vault improper configuration of multi factor authentication

HashiCorp Vault and Vault Enterprise from 1.10.0 to 1.10.2 did not correctly configure and enforce MFA on login after server restarts. This affects the Login MFA feature introduced in Vault and Vault Enterprise 1.10.0 and does not affect the separate Enterprise MFA feature set. Fixed in 1.10.3...

5.3CVSS5.9AI score0.01102EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2022/05/18 12:0 a.m.22 views

GHSA-C5WC-V287-82PC HashiCorp Vault improper configuration of multi factor authentication

HashiCorp Vault and Vault Enterprise from 1.10.0 to 1.10.2 did not correctly configure and enforce MFA on login after server restarts. This affects the Login MFA feature introduced in Vault and Vault Enterprise 1.10.0 and does not affect the separate Enterprise MFA feature set. Fixed in 1.10.3...

5.3CVSS5.4AI score0.01102EPSS
Exploits0References6
CNNVD
CNNVD
added 2022/05/17 12:0 a.m.23 views

Hashicorp Vault 安全漏洞

Hashicorp HashiCorp Vault is a private key access management tool from Hashicorp USA. A security vulnerability exists in HashiCorp Vault and Vault Enterprise versions 1.10.0 through 1.10.2, which stems from a misconfiguration and a forced MFA login after a server reboot...

5.3CVSS5.6AI score0.01102EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/05/17 12:0 a.m.2 views

PT-2022-20232 · Hashicorp · Hashicorp Vault +1

Name of the Vulnerable Software and Affected Versions: HashiCorp Vault and Vault Enterprise versions 1.10.0 through 1.10.2 Description: The issue is related to the improper configuration and enforcement of multi-factor authentication MFA on login after server restarts, specifically affecting the...

5.3CVSS7AI score0.01102EPSS
Exploits0References12
Malwarebytes
Malwarebytes
added 2022/05/12 10:21 a.m.16 views

College closes down after ransomware attack

Lincoln College, one of the few rural schools in Illinois, said that it will permanently close on Friday, May 13, after 157 years, partly due to the impacts of the COVID-19 pandemic and partly due to a long recovery after a ransomware attack in December 2021. The institution notified the Illinois...

0.6AI score
Exploits0
The Hacker News
The Hacker News
added 2022/05/12 6:37 a.m.24 views

Government Agencies Warn of Increase in Cyberattacks Targeting MSPs

Multiple cybersecurity authorities from Australia, Canada, New Zealand, the U.K., and the U.S. on Wednesday released a joint advisory warning of threats targeting managed service providers MSPs and their customers. Key among the recommendations include identifying and disabling accounts that are ...

2AI score
Exploits0
Krebs on Security
Krebs on Security
added 2022/05/07 1:31 p.m.20 views

Your Phone May Soon Replace Many of Your Passwords

Apple, Google and Microsoft announced this week they will soon support an approach to authentication that avoids passwords altogether, and instead requires users to merely unlock their smartphones to sign in to websites or online services. Experts say the changes should help defeat many types of...

7.3AI score
Exploits0
Trellix
Trellix
added 2022/05/06 12:0 a.m.13 views

Five Eyes Alliance Advisory & Using Threat Intelligence

Trellix Global Defenders: Five Eyes Alliance Advisory and Using Threat Intelligence to Protect Against Future Attacks By Taylor Mullins · May 6, 2022 Evolving intelligence continues to indicate that the Russian government is exploring options to launch cyberattacks in retaliation against...

0.5AI score
Exploits0
Hacker One
Hacker One
added 2022/05/05 1:7 a.m.22 views

Internet Bug Bounty: rubygems.org Batching attack to `confirmation_token` by bypass rate limit

The following is copied from hackerone's report. https://hackerone.com/reports/1529183 --- I confirmed that EmailConfirmationsController has the same problem as https://hackerone.com/reports/449356...

7AI score
Exploits0
CNNVD
CNNVD
added 2022/05/05 12:0 a.m.3 views

Splunk Enterprise 授权问题漏洞

Splunk is a suite of data collection and analysis software from Splunk, Inc. in the United States. The software is primarily used to collect, index, and analyze and the data it generates, including data generated by all IT systems and infrastructures physical, virtual machines, and cloud. A...

8.1CVSS7.7AI score0.00762EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/05/04 12:0 a.m.5 views

PT-2022-16229 · Ping Identity · Pingid Integration For Windows Login

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves the use of static encryption key material, which allows for the forging of an authentication token to other users within a tenant...

8.1CVSS8.1AI score0.00416EPSS
Exploits0References6
Rows per page
Query Builder