Collaborate Disseminate
Microsoft Exchange servers around the world are still getting compromised via the ProxyLogon (CVE-2021-26855) and three other vulnerabilities patched by Microsoft in early March. While the initial attacks were attributed by Microsoft to a threat actor … Continue reading As attacks on Exchange servers escalate, Microsoft investigates potential PoC exploit leak
The day after VMware released fixes for a critical RCE flaw (CVE-2021-21972) found in a default vCenter Server plugin, opportunistic attackers began searching for publicly accessible vulnerable systems. We’ve detected mass scanning activity targeting vulnerable VMware vCenter servers (https://t.co/t3Gv2ZgTdt). Query our API for “tags=CVE-2021-21972” for relevant indicators and source IP addresses. #threatintel https://t.co/AcSZ40U5Gp — Bad Packets (@bad_packets) February 24, 2021 “In our opinion, the RCE vulnerability in the vCenter Server can pose no less a … More
The post Attackers are looking to exploit critical VMware vCenter Server RCE flaw, patch ASAP! appeared first on Help Net Security.
Light-equipped bike helmets are now fairly common, but most of them still have to be plugged into a charger, and manually turned on and off as needed. The just-announced Omne Eternal, however, lets ambient light do all the work.Continue ReadingCategory… Continue reading Tail-light-packin’ helmet is powered and activated by ambient light
Drupal has released out-of-band security updates to fix two critical code execution flaws (CVE-2020-28948, CVE-2020-28949) in Drupal core, as “there are known exploits for one of core’s dependencies and some configurations of Drupal are vul… Continue reading Out-of-band Drupal security updates fix bugs with known exploits
Cisco has patched two vulnerabilities in its Cisco Security Manager solution, both of which could allow unauthenticated, remote attackers to gain access to sensitive information on an affected system. Those are part of a batch of twelve vulnerabilities… Continue reading Critical vulnerabilities in Cisco Security Manager fixed, researcher discloses PoCs
A critical vulnerability (CVE-2020-27955) in Git Large File Storage (Git LFS), an open source Git extension for versioning large files, allows attackers to achieve remote code execution if the Windows-using victim is tricked into cloning the attacker&#… Continue reading Git LFS vulnerability allows attackers to compromise targets’ Windows systems (CVE-2020-27955)
Google researchers have made public a Windows kernel zero day vulnerability (CVE-2020-17087) that is being exploited in the wild in tandem with a Google Chrome flaw (CVE-2020-15999) that has been patched on October 20. About CVE-2020-17087 CVE-2020-170… Continue reading Google discloses actively exploited Windows zero-day (CVE-2020-17087)
A critical and easily exploitable remote code execution vulnerability (CVE-2020-14882) in Oracle WebLogic Server is being targeted by attackers, SANS ISC has warned. Oracle WebLogic is a Java EE application server that is part of Oracle’s Fusion Middle… Continue reading Easily exploitable RCE in Oracle WebLogic Server under attack (CVE-2020-14882)
By Ben Reardon, Corelight Security Researcher This month’s Microsoft Patch Tuesday included a severe Remote Code Execution vulnerability in the way that Windows TCP/IP handles IPv6 “Router Advertisement” ICMP messages. Due to the severity and wide scop… Continue reading Community detection: CVE-2020-16898
Security researchers and U.S. government authorities alike are urging admins to address Microsoft’s critical privilege escalation flaw. Continue reading Windows Exploit Released For Microsoft ‘Zerologon’ Flaw