eSecurity Planet

JULY 29, 2024

This week, we also saw some older issues return to light, including an Internet Explorer vulnerability first discovered in 2012. A Microsoft SmartScreen vulnerability from earlier this year resurfaced, and a Docker flaw from 2018 is still causing issues in a newer version of the software. All vulnerabilities have a CVSS score of 7.5.

Internet 110

Internet Internet Accountability Software 110

eSecurity Planet

OCTOBER 26, 2023

Malicious software frequently uses a large percentage of your device’s resources, resulting in visible decline in performance. Strange Pop-Up Window Messages Unwanted pop-up advertisements or messages that display even while you are not surfing the internet might indicate the presence of adware or other types of malware.

Malware 109

Malware Antivirus Adware Software 109

eSecurity Planet

FEBRUARY 19, 2024

The problem: Zoom recently patched a flaw that affected three of its Windows-facing software products: Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows. It bypasses Internet Shortcut Files’ security measures. Patching the software to a non-vulnerable version.

VPN 114

VPN DNS Ransomware Software 114

Krebs on Security

SEPTEMBER 14, 2022

Also, Apple has also quashed a pair of zero-day bugs affecting certain macOS and iOS users, and released iOS 16 , which offers a new privacy and security feature called “ Lockdown Mode.” Microsoft today released software patches to plug at least 64 security holes in Windows and related products.

Spyware 217

Spyware Cyber threats Security Defenses Cyber Attacks 217

eSecurity Planet

JANUARY 29, 2024

Dashlane is a password management software that’s popular for business and personal uses alike. The company was founded in 2009, and the first software edition was released in 2012. Like many other password managers, Dashlane makes it easy for users to create new passwords and store existing ones in a secure vault.

Password Management 110

Password Management Passwords Authentication Accountability 110

eSecurity Planet

SEPTEMBER 9, 2022

Ponemon chairman and founder Larry Ponemon said in a statement that “Most of the IT and security professionals regard their organizations as vulnerable to these attacks,” and that growing adoption of technologies such as cloud, mobile , big data , and the Internet of Things (IoT) are adding to that risk.

Healthcare 138

Healthcare Ransomware Cybersecurity Big data 138

eSecurity Planet

JUNE 3, 2024

After exploiting this vulnerability, a threat actor could read data on Check Point Security Gateway appliances. Conditions for a breach are connecting to the internet and enabling the gateway with Remote Access VPN or Mobile Access Software Blades. This vulnerability affects the following versions of Fortinet FortiSIEM: 7.1.0

VPN 110

VPN Authentication Passwords Software 110

eSecurity Planet

AUGUST 27, 2024

A virtual private network (VPN) does more than just mask your identity—it fundamentally changes how your data moves across the internet. This process involves multiple steps and technologies working together to ensure your data remains private and secure. This server acts as an intermediary between your device and the wider internet.

VPN 104

VPN Encryption Internet Internet 104

eSecurity Planet

APRIL 29, 2024

The exploitation disclosure led the US Cybersecurity Infrastructure and Security Agency (CISA) to add the vulnerability to the known exploited vulnerabilities (KEV) catalog. Federal agencies have until May 14, 2024, to apply patches or disable vulnerable software.

Firewall 114

Firewall Software Ransomware Penetration Testing 114

eSecurity Planet

OCTOBER 1, 2024

Progress Software, which owns WhatsApp Gold, released a security bulletin advising customers to upgrade their WhatsApp Gold instances to version 24.0.1. If the installations use default software configuration, a threat actor could use a specifically crafted container image to access the host file system. of WhatsApp Gold.

Authentication 110

Authentication Software Internet Internet 110

eSecurity Planet

JANUARY 18, 2024

Cloud storage is a cloud computing model that allows data storage on remote servers operated by a service provider, accessible via internet connections. It excels in remote access, scalability, and security, with distributed storage options and privacy adherence capabilities.

Risk 126

Risk Backups Encryption DDOS 126

eSecurity Planet

APRIL 15, 2024

Threats range from severe weaknesses in Ivanti’s VPN appliances to zero-day exploits in popular software such as Palo Alto Networks’ PAN-OS and Telegram’s Windows client. Typically, these vulnerabilities result in remote code execution or denial-of-service attacks, posing major dangers to users’ data security.

Firewall 110

Firewall VPN Software Risk 110

eSecurity Planet

JANUARY 29, 2024

As of January 24th, Shadowserver researchers still detected 5,300 older and internet-exposed GitLab accounts. January 25, 2024 Cisco Enterprise Communication Software Critical RCE Vulnerability Type of vulnerability: RCE attacks that possibly establish root access. The fix: Update to Jenkins 2.442 (or LTS 2.426.3)

Software 115

Software Authentication CSO Accountability 115

eSecurity Planet

FEBRUARY 2, 2024

Within the last couple of months, smart device vulnerabilities have been piling up, prompting businesses to protect their Internet of Things (IoT) environments. While Teslas aren’t the typical business IoT device, their connection to the internet makes them a cyber threat as much as your business’s other IoT technology.

Hacking 126

Hacking IoT Firmware Cybersecurity 126

eSecurity Planet

APRIL 16, 2024

The dispute between Ray’s developers and security researchers highlights hidden assumptions and teaches lessons for AI security, internet-exposed assets, and vulnerability scanning through an understanding of ShadowRay.

Cybersecurity 114

Cybersecurity Penetration Testing Internet Internet 114

CyberSecurity Insiders

OCTOBER 10, 2021

It is now regarded as the most serious web application security risk based on the data contributed to OWASP’s threat intelligence, which shows that 3.81 These details are in line with the notable rise of application security solutions including Runtime Application Self-Protection (RASP). From ninth, it now takes the sixth spot.

Cyber threats 117

Cyber threats Cyber Attacks Software Risk 117

eSecurity Planet

AUGUST 21, 2023

Rarlab released an updated version (6.23) of the software, which should be updated as soon as possible. Synopsis Discovers OpenNMS Meridian and Horizon Vulnerability Synopsis found a permissive XML parser vulnerability, CVE-2023-0871 , that affects both the open source and subscription versions of the OpenNMS network monitoring software.

Encryption 98

Encryption Security Defenses Cybersecurity Software 98

eSecurity Planet

MAY 6, 2024

Blocking a program in a firewall is a security measure that protects systems from unwanted access. This process monitors resource consumption, limits internet access, blocks inbound access from malicious sources, and prevents outbound access from installed apps. Block it if it’s not confirmed or if you’re not sure of its legitimacy.

Firewall 71

Firewall Internet Internet Software 71

eSecurity Planet

OCTOBER 8, 2024

Malware: Another suspected technique was the use of malware , specially crafted software that could have been deployed to create backdoors into the wiretapping infrastructure without detection. In addition, the hackers may have accessed broader internet traffic data, which could involve personal and corporate communications.

Surveillance 114

Surveillance Government Phishing Cybersecurity 114

eSecurity Planet

AUGUST 14, 2023

Here’s a roundup of the week’s major vulnerabilities that security teams should mitigate or patch. August 12 , 2023 Ford Auto’s TI Wi-Fi Vulnerability The Internet of Things (IoT) continues to expand and become a threat to connected businesses. Adobe also updated their Commerce and Dimension software.

Software 98

Software Malware Internet Internet 98

eSecurity Planet

DECEMBER 19, 2023

By exploring the top eight issues and preventative measures, as well as shedding light on the security benefits of IaaS, you can better secure your cloud security infrastructure. IaaS security refers to the procedures, technologies, and safeguards put in place by IaaS providers to protect their computer infrastructure.

Encryption 115

Encryption Firewall Authentication Software 115

eSecurity Planet

JANUARY 16, 2024

Keep an eye out for security announcements from your firewall vendors; it’s possible additional similar vulnerabilities will come to light. Continue to monitor all of your software for potential malicious behavior, but this week, monitor network appliances in particular. You can unsubscribe at any time.

Firewall 110

Firewall Firmware IoT Authentication 110

eSecurity Planet

NOVEMBER 6, 2023

See the Best Container & Kubernetes Security Solutions & Tools Oct. 31, 2023 Atlassian Warns of Critical Confluence Flaw Leading to Data Loss Type of attack: CVE-2023-22518 is an incorrect authorization vulnerability that affects all versions of Atlassian’s Confluence Data Center and Confluence Server software.

Software 113

Software Education Ransomware Firmware 113

eSecurity Planet

FEBRUARY 16, 2024

government and defense institutions for intelligence gathering. Using web shells, they attacked weak internet servers, specifically a Houston port. Analysts and security software frequently struggle to spot malicious activity disguised as normal ones, complicating intrusion detection and mitigation efforts.

Internet 115

Internet Internet Network Security Cybersecurity 115

eSecurity Planet

OCTOBER 2, 2023

Organizations should examine the affected model list and scrutinize installed software on affected devices until patches are available. Considering the active ransomware activity with vulnerabilities in Progress Software’s other file transfer software, MOVEit, WS_FTP server maintenance teams should patch ASAP.

DDOS 110

DDOS Encryption Software Ransomware 110

eSecurity Planet

SEPTEMBER 13, 2023

Natalie Silva, lead cyber security engineer at Immersive Labs, told eSecurity Planet that the Word vulnerability in particular poses a high risk, noting that the Preview Pane is a potential attack vector. CVE-2023-38148 , a remote code execution vulnerability in Internet Connection Sharing (ICS) with a CVSS score of 8.8

Engineering 110

Engineering Security Defenses Risk Media 110

eSecurity Planet

AUGUST 11, 2023

The trends to adopt Internet of Things (IoT) devices, remote work , and cloud resources drastically increase the amount of communication outside of the traditional network that needs to be secured. This trend spreads out data center risk over the internet and increases the potential vectors for attack.

Firewall 105

Firewall IoT Technology Internet 105

eSecurity Planet

SEPTEMBER 26, 2023

Founded in 2012, Versa Networks seeks to deploy a single software operating system, called VOS, to converge and integrate cloud and on-premises security, networking, and analytics. Using VOS, Versa enables customers and service providers to deploy SASE and software-defined wide area network (SD-WAN) solutions.

Firewall 98

Firewall Software Internet Internet 98

eSecurity Planet

JULY 31, 2024

AV software blocks malware, EPP passively prevents threats, and EDR actively mitigates network attacks. Table of Contents Toggle Does Your Business Need EDR, EPP, or Antivirus Software? What Is Antivirus Software? EDR, EPP, and AVs are endpoint security tools that address different scopes of protection.

Antivirus 118

Antivirus Threat Detection Malware Software 118

Security Boulevard

SEPTEMBER 20, 2021

The dissemination phase consists of active processing and dissemination of the processed data for the purpose of communicating the actionable intelligence for the purpose of ensuring that an organizations defense is actively aware of the threats facing its infrastructure and security defense mechanisms.

Cybercrime 88

Cybercrime Cyber Attacks Security Defenses Cyber threats 88

eSecurity Planet

OCTOBER 13, 2022

Most commonly, we see DDoS attacks used against websites, applications, or services exposed to the internet, but DDoS attacks can also be applied against specific computers, gateways, or internal network resources. The very first DDoS attacks occurred when network engineers misconfigured networks and overwhelmed components by accident.

DDOS 129

DDOS Internet Internet Firewall 129

eSecurity Planet

SEPTEMBER 5, 2023

This major security weakness can allow unauthenticated attackers to execute code on vulnerable devices through the Internet-exposed J-Web configuration interface. Admins can apply the security updates, upgrade their JunOS software to the current version, or disable Internet access to the J-Web interface to eliminate the attack vector.

VPN 105

VPN Authentication Ransomware Antivirus 105

eSecurity Planet

OCTOBER 11, 2023

Immersive Labs principal security engineer Rob Reeves told eSecurity Planet that the attack doesn’t require credentials or authentication in order to execute code on the system. Just because your Exchange Server doesn’t have internet-facing authentication doesn’t mean it’s protected.”

DDOS 110

DDOS Engineering Authentication Social Engineering 110

eSecurity Planet

AUGUST 14, 2024

OpenVPN has long been a popular choice for creating secure point-to-point or site-to-site connections over the internet. Its open-source nature and robust encryption capabilities have made it a staple in many organizations’ and individuals’ security arsenals.

Identity Theft 115

Identity Theft Data breaches Internet Internet 115

eSecurity Planet

MAY 2, 2024

The vendor reports show that most attackers want credentials, most malware development is in credential-stealing software, and the market for stolen credentials is booming: Cisco: Found 54% of organizations experienced a cybersecurity incident; and of those incidents, 54% involved phishing and 37% involved credentials stuffing.

Cybersecurity 122

Cybersecurity DDOS Penetration Testing Passwords 122

eSecurity Planet

JANUARY 22, 2024

Make sure your security teams are regularly checking vendors’ software and hardware updates for any patches, and keep a particular eye on networking equipment. NDcPP Citrix also suggests that users don’t expose the Netscaler ADC management interface to the internet. and later releases of 13.1 NetScaler ADC 13.1-FIPS

Authentication 115

Authentication Malware VPN Mobile 115

eSecurity Planet

DECEMBER 14, 2023

Two critical flaws in Internet Connection Sharing (ICS), CVE-2023-35630 and CVE-2023-35641 , have a CVSS score of 8.8. “DoS conditions in antivirus software are of interest to attackers as they can impede efforts to detect adversaries,” Reeves added.

Antivirus 114

Antivirus Engineering Security Defenses Internet 114