2024 – Page 2 – WafdogBlog

Jenkins Security Update: Patching Critical Vulnerabilities and Preventing Remote Code Execution

The maintainers of Jenkins, an open-source continuous integration/continuous delivery and deployment (CI/CD) automation software, have rectified nine security vulnerabilities, one of which was critical and could potentially lead to remote code execution (RCE) if exploited successfully. Identified as CVE-2024-23897, the critical flaw allows for arbitrary file read access via the built-in command line interface (CLI). …

Jenkins Security Update: Patching Critical Vulnerabilities and Preventing Remote Code Execution Read More »

Cisco Addresses Critical Security Vulnerability in Unified Communications and Contact Center Solutions

Cisco has issued patches to remedy a severe security vulnerability affecting its Unified Communications and Contact Center Solutions products. This flaw, identified as CVE-2024-20253 with a CVSS score of 9.9, arises from mishandling user-provided data, enabling a potential attacker to execute arbitrary code on a vulnerable device without authentication. The vulnerability originates from the improper …

Cisco Addresses Critical Security Vulnerability in Unified Communications and Contact Center Solutions Read More »

Outlook Vulnerability Exposes Passwords: Cybersecurity Threats and Protective Measures

In Microsoft’s email software Outlook, there appears to be a vulnerability that cybercriminals can exploit to capture passwords of other users. The targeted individual simply needs to open a calendar invitation attached to a specifically crafted email. Following this action, Outlook transfers the NTLMv2 hash of the user’s password to a system controlled by the …

Outlook Vulnerability Exposes Passwords: Cybersecurity Threats and Protective Measures Read More »

Microsoft Targeted by Cyberattack: Midnight Blizzard Strikes Again

The software giant Microsoft has apparently once again fallen victim to a cyberattack. According to a new blog post by the company, a hacker group supported by the Russian state called Midnight Blizzard, also known as Nobelium, Cozy Bear, or APT29, gained access to an “old, non-productive test tenant account” through a password spraying attack …

Microsoft Targeted by Cyberattack: Midnight Blizzard Strikes Again Read More »

SEC Reveals Further Details on X-Account Breach and SIM-Swapping Incident

After a malicious actor took over the X-account of the US Securities and Exchange Commission (SEC) two weeks ago to prematurely announce the expected Bitcoin ETF approval, the agency has now shared further information regarding this incident. According to a new statement from the regulatory body, the attackers managed to take control of the phone …

SEC Reveals Further Details on X-Account Breach and SIM-Swapping Incident Read More »

TeamViewer Exploited by Cybercriminals for Ransomware Attacks

Cybercriminals appear to be currently exploiting the widely used remote access software TeamViewer to gain unauthorized access to remote computer systems and encrypt them with ransomware. This was reported by Bleeping Computer, citing a blog post from Huntress, detailing two specific attack incidents. In both cases, initial access was made through TeamViewer from the same …

TeamViewer Exploited by Cybercriminals for Ransomware Attacks Read More »

Juniper Networks Releases Critical Updates to Patch Remote Code Execution Vulnerabilities in SRX Firewalls and EX Switches

Juniper Networks has issued updates to address a critical remote code execution (RCE) vulnerability found in its SRX Series firewalls and EX Series switches. Rated 9.8 on the CVSS scoring system and tracked as CVE-2024-21591, this vulnerability could allow an unauthenticated, network-based attacker to execute remote code or cause a Denial-of-Service (DoS) situation, potentially gaining …

Juniper Networks Releases Critical Updates to Patch Remote Code Execution Vulnerabilities in SRX Firewalls and EX Switches Read More »

NetScaler’s ADC and Gateway Products: New Vulnerabilities Uncovered and Patched

Just when you thought you had recovered from Bleed, two vulnerabilities in NetScaler’s ADC and Gateway products have been rectified, though not before malicious actors discovered and exploited them, according to the vendor. CVE-2023-6548 could potentially enable remote code execution (RCE) within the appliances’ management interface. Despite its low 5.5 CVSS rating for an RCE …

NetScaler’s ADC and Gateway Products: New Vulnerabilities Uncovered and Patched Read More »

GitHub Implements Key Rotation in Response to Security Vulnerability

GitHub has recently disclosed the rotation of certain keys as a precautionary measure in response to a security vulnerability that posed potential risks of unauthorized access to credentials within a production container. According to the Microsoft-owned subsidiary, the issue came to their attention on December 26, 2023. They promptly addressed the problem on the same …

GitHub Implements Key Rotation in Response to Security Vulnerability Read More »

Alert: AndroxGh0st Malware Sparks Cloud-Based Botnet Threat, Warns CISA and FBI

CISA and the FBI have issued a warning regarding the deployment of the AndroxGh0st malware by threat actors, who are building a botnet for the purpose of identifying and exploiting victims within target networks. Initially observed by Lacework in December 2022, AndroxGh0st, a Python-based malware, has spawned similar tools such as AlienFox, GreenBot (also known …

Alert: AndroxGh0st Malware Sparks Cloud-Based Botnet Threat, Warns CISA and FBI Read More »