Lucene search
K

1378 matches found

The Hacker News
The Hacker News
added 2023/12/18 5:41 a.m.96 views

CISA Urges Manufacturers Eliminate Default Passwords to Thwart Cyber Threats

The U.S. Cybersecurity and Infrastructure Security Agency CISA is urging manufacturers to get rid of default passwords on internet-exposed systems altogether, citing severe risks that could be exploited by malicious actors to gain initial access to, and move laterally within, organizations. In an...

9.8CVSS7.8AI score0.99999EPSS
Exploits22
Talos Blog
Talos Blog
added 2023/12/14 7:0 p.m.33 views

A personal Year in Review to round out 2023

As youve probably seen by now, Talos released our 2023 Year in Review report last week. Its an extremely comprehensive look at the top threats, attacker trends and malware families from the past year with never-before-seen Cisco Talos telemetry. We have podcasts, long-form videos and even Reddit...

5CVSS8.4AI score0.97115EPSS
Exploits14
Qualys Blog
Qualys Blog
added 2023/12/12 6:21 p.m.20 views

Building an AppSec Program with Qualys WAS – Additional Configurations and Review & Confirm

Part 4 - Configuring a Web Application or API: Additional Configurations Now that we have completed the basic information, crawl settings, and default scan configurations, we can shift our attention to additional configurations designed to optimize scanning and provide granular control over how...

8AI score
Exploits0
OSV
OSV
added 2023/12/05 9:15 p.m.6 views

CVE-2023-5970

Improper authentication in the SMA100 SSL-VPN virtual office portal allows a remote authenticated attacker to create an identical external domain user using accent characters, resulting in an MFA bypass...

8.8CVSS5.8AI score0.00911EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/12/05 12:0 a.m.6 views

SonicWALL SSL-VPN SMA100 series Security Vulnerability

The SonicWALL SSL-VPN SMA100 series is SonicWALL's for secure remote connectivity. A series of VPN connectivity solutions. A security vulnerability exists in the SonicWALL SSL-VPN SMA100 series that stems from incorrect authentication and allows a remote attacker to create the same external domai...

8.8CVSS7.5AI score0.00911EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/05 12:0 a.m.3 views

PT-2023-32452 · Sonicwall · Sma100 Ssl-Vpn

Name of the Vulnerable Software and Affected Versions: SMA100 SSL-VPN virtual office portal affected versions not specified Description: The issue is related to improper authentication in the SMA100 SSL-VPN virtual office portal. This allows a remote authenticated attacker to create an identical...

8.8CVSS7.1AI score0.00911EPSS
Exploits0References7
Malwarebytes
Malwarebytes
added 2023/12/04 10:6 p.m.10 views

23andMe says, er, actually some genetic and health data might have been accessed in recent breach

In October we reported that the data of as many as seven million 23andMe customers were for sale on criminal forums following a password attack against the genomics company. Now, a filing with the US Securities and Exchange Commission SEC has provided some more insight into the data theft. The...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/11/29 10:41 p.m.12 views

Many major websites allow users to have weak passwords

A new study that examines the current state of password policies across the internet shows that many of the most popular websites allow users to create weak passwords. For the Georgia Tech study, the researchers designed an algorithm that automatically determined a website’s password policy. With...

7.7AI score
Exploits0
Krebs on Security
Krebs on Security
added 2023/11/29 7:41 p.m.13 views

Okta: Breach Affected All Customer Support Users

When KrebsOnSecurity broke the news on Oct. 20, 2023 that identity and authentication giant Okta had suffered a breach in its customer support department, Okta said the intrusion allowed hackers to steal sensitive data from fewer than one percent of its 18,000+ customers. But today, Okta revised...

7.2AI score
Exploits0
Krebs on Security
Krebs on Security
added 2023/11/28 3:57 p.m.18 views

ID Theft Service Resold Access to USInfoSearch Data

One of the cybercrime undergrounds more active sellers of Social Security numbers, background and credit reports has been pulling data from hacked accounts at the U.S. consumer data broker USinfoSearch, KrebsOnSecurity has learned. Since at least February 2023, a service advertised on Telegram...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2023/11/28 11:13 a.m.54 views

How Hackers Phish for Your Users' Credentials and Sell Them

Account credentials, a popular initial access vector, have become a valuable commodity in cybercrime. As a result, a single set of stolen credentials can put your organization's entire network at risk. According to the 2023 Verizon Data Breach Investigation Report, external parties were responsib...

7.9AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/11/24 12:0 a.m.6 views

PT-2023-30917 · Warpgate · Warpgate

Name of the Vulnerable Software and Affected Versions: Warpgate versions prior to 0.9.0 Description: Warpgate is an open source SSH, HTTPS and MySQL bastion host for Linux. In affected versions, there is a privilege escalation issue through a non-admin user's account. Limited users can impersonat...

8.8CVSS9AI score0.00676EPSS
Exploits0References5
Malwarebytes
Malwarebytes
added 2023/11/20 11:10 p.m.23 views

Scattered Spider ransomware gang falls under government agency scrutiny

As you may have read in our November Ransomware Review, Scattered Spider is a relatively new, albeit dangerous, ransomware gang who made headlines in September for attacking MGM Resorts and Caesar Entertainment. For small security teams, one of the most important findings about the group is their...

7.5AI score
Exploits0
ICS
ICS
added 2023/11/16 12:0 p.m.112 views

Scattered Spider

SUMMARY The Federal Bureau of Investigation FBI and Cybersecurity and Infrastructure Security Agency CISA are releasing this joint Cybersecurity Advisory CSA in response to recent activity by Scattered Spider threat actors against the commercial facilities sectors and subsectors. This advisory...

10AI score
Exploits0References134
The Hacker News
The Hacker News
added 2023/11/13 11:35 a.m.39 views

Top 5 Marketing Tech SaaS Security Challenges

Effective marketing operations today are driven by the use of Software-as-a-Service SaaS applications. Marketing apps such as Salesforce, Hubspot, Outreach, Asana, Monday, and Box empower marketing teams, agencies, freelancers, and subject matter experts to collaborate seamlessly on campaigns and...

7.1AI score
Exploits0
OSV
OSV
added 2023/11/09 2:15 p.m.19 views

CVE-2023-4612

Improper Authentication vulnerability in Apereo CAS in jakarta.servlet.http.HttpServletRequest.getRemoteAddr method allows Multi-Factor Authentication bypass.This issue affects CAS: through 7.0.0-RC7. It is unknown whether in new versions the issue will be fixed. For the date of publication there...

9.8CVSS9.6AI score0.00941EPSS
Exploits0References2
NVD
NVD
added 2023/11/09 2:15 p.m.20 views

CVE-2023-4612

Improper Authentication vulnerability in Apereo CAS in jakarta.servlet.http.HttpServletRequest.getRemoteAddr method allows Multi-Factor Authentication bypass.This issue affects CAS: through 7.0.0-RC7. It is unknown whether in new versions the issue will be fixed. For the date of publication there...

9.8CVSS0.00941EPSS
Exploits0References2
Prion
Prion
added 2023/11/09 2:15 p.m.17 views

Authentication flaw

Improper Authentication vulnerability in Apereo CAS in jakarta.servlet.http.HttpServletRequest.getRemoteAddr method allows Multi-Factor Authentication bypass.This issue affects CAS: through 7.0.0-RC7. It is unknown whether in new versions the issue will be fixed. For the date of publication there...

7.5CVSS7.2AI score0.00941EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/09 1:41 p.m.8 views

CVE-2023-4612 MFA bypass in Apereo CAS

Improper Authentication vulnerability in Apereo CAS in jakarta.servlet.http.HttpServletRequest.getRemoteAddr method allows Multi-Factor Authentication bypass.This issue affects CAS: through 7.0.0-RC7. It is unknown whether in new versions the issue will be fixed. For the date of publication there...

9.5AI score0.00941EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/11/09 1:41 p.m.36 views

CVE-2023-4612 MFA bypass in Apereo CAS

Improper Authentication vulnerability in Apereo CAS in jakarta.servlet.http.HttpServletRequest.getRemoteAddr method allows Multi-Factor Authentication bypass.This issue affects CAS: through 7.0.0-RC7. It is unknown whether in new versions the issue will be fixed. For the date of publication there...

9.7AI score0.00941EPSS
Exploits0References2
Rows per page
Query Builder