Story of the Year: global IT outages and supply chain attacks

While the CrowdStrike incident is still fresh in our minds, Kaspersky experts look back on similar IT outages that happened in 2024 and predict potential threats for 2025. Continue reading Story of the Year: global IT outages and supply chain attacks

Microsoft Says Windows Not Impacted by regreSSHion as Second OpenSSH Bug Is Found

A second remote code execution vulnerability, tracked as CVE-2024-6409, was found in OpenSSH during an analysis of the regreSSHion flaw.
The post Microsoft Says Windows Not Impacted by regreSSHion as Second OpenSSH Bug Is Found appeared first on Securi… Continue reading Microsoft Says Windows Not Impacted by regreSSHion as Second OpenSSH Bug Is Found

This Week in Security: Blast-RADIUS, Gitlab, and Plormbing

The RADIUS authentication scheme, short for “Remote Authentication Dial-In User Service”, has been widely deployed for user authentication in all sorts of scenarios. It’s a bit odd, in that individual …read more Continue reading This Week in Security: Blast-RADIUS, Gitlab, and Plormbing

regreSSHion OpenSSH Flaw: Potential Exploitation Attempts Seen, but Mass Attacks Unlikely

The critical OpenSSH vulnerability tracked as regreSSHion and CVE-2024-6387 may already be targeted by attackers, but mass exploitation is unlikely.
The post regreSSHion OpenSSH Flaw: Potential Exploitation Attempts Seen, but Mass Attacks Unlikely appe… Continue reading regreSSHion OpenSSH Flaw: Potential Exploitation Attempts Seen, but Mass Attacks Unlikely

Millions of OpenSSH Servers Potentially Vulnerable to Remote regreSSHion Attack

Millions of OpenSSH servers could be vulnerable to unauthenticated remote code execution due to a vulnerability tracked as regreSSHion and CVE-2024-6387.
The post Millions of OpenSSH Servers Potentially Vulnerable to Remote regreSSHion Attack appeared … Continue reading Millions of OpenSSH Servers Potentially Vulnerable to Remote regreSSHion Attack