Calenderweek 41 – WafdogBlog

Massive DDoS attack exploits zero-day vulnerability in HTTP/2 Rapid Reset

A unique DDoS attack based on HTTP/2 targeted multiple Google services and cloud users. The attackers utilized an advanced method called HTTP/2 Rapid Reset to exploit a zero-day vulnerability in the HTTP/2 protocol, identified as CVE-2023-44487, which could be used for DDoS attacks. The reported scale of the attack was as follows: Amazon successfully defended …

Massive DDoS attack exploits zero-day vulnerability in HTTP/2 Rapid Reset Read More »

ShellBot uses hexadecimal IPs to attack Linux SSH servers

The individuals responsible for ShellBot use IP addresses in hexadecimal notation to gain access to poorly managed Linux SSH servers and implement the DDoS malware. According to a recent report from the AhnLab Security Emergency Response Center (ASEC), the general process remains unchanged, but the download URL used by these threat actors to install ShellBot …

ShellBot uses hexadecimal IPs to attack Linux SSH servers Read More »

CISA warns of security vulnerability in Adobe Acrobat Reader

Recently, a critical security vulnerability in Adobe Acrobat Reader was disclosed by the U.S. Cybersecurity and Infrastructure Security Agency (CISA). This security flaw is known as CVE-2023-21608 and has been rated with a CVSS score of 7.8. It is a security vulnerability known as a “Use-after-free bug,” which allows potential attackers to achieve Remote Code …

CISA warns of security vulnerability in Adobe Acrobat Reader Read More »