vulnerabilities – WindowsTechs.com

Most of 2023’s Top Exploited Vulnerabilities Were Zero-Days

Posted on November 18, 2024 by Bruce Schneier

Zero-day vulnerabilities are more commonly used, according to the Five Eyes:

Key Findings

In 2023, malicious cyber actors exploited more zero-day vulnerabilities to compromise enterprise networks compared to 2022, allowing them to conduct cyber operations against higher-priority targets. In 2023, the majority of the most frequently exploited vulnerabilities were initially exploited as a zero-day, which is an increase from 2022, when less than half of the top exploited vulnerabilities were exploited as a zero-day.

Malicious cyber actors continue to have the most success exploiting vulnerabilities within two years after public disclosure of the vulnerability. The utility of these vulnerabilities declines over time as more systems are patched or replaced. Malicious cyber actors find less utility from zero-day exploits when international cybersecurity efforts reduce the lifespan of zero-day vulnerabilities…

Continue reading Most of 2023’s Top Exploited Vulnerabilities Were Zero-Days→

Threats in space (or rather, on Earth): internet-exposed GNSS receivers

Posted on November 13, 2024 by Isabel Manjarrez

Internet-exposed GNSS receivers pose a significant threat to sensitive operations. Kaspersky shares statistics on internet-exposed receivers for July 2024 and advice on how to protect against GNSS attacks. Continue reading Threats in space (or rather, on Earth): internet-exposed GNSS receivers→

AIs Discovering Vulnerabilities

Posted on November 5, 2024 by Bruce Schneier

I’ve been writing about the possibility of AIs automatically discovering code vulnerabilities since at least 2018. This is an ongoing area of research: AIs doing source code scanning, AIs finding zero-days in the wild, and everything in between. The AIs aren’t very good at it yet, but they’re getting better.

Here’s some anecdotal data from this summer:

Since July 2024, ZeroPath is taking a novel approach combining deep program analysis with adversarial AI agents for validation. Our methodology has uncovered numerous critical vulnerabilities in production systems, including several that traditional Static Application Security Testing (SAST) tools were ill-equipped to find. This post provides a technical deep-dive into our research methodology and a living summary of the bugs found in popular open-source tools…

Continue reading AIs Discovering Vulnerabilities→

Risk reduction redefined: How compromise assessment helps strengthen cyberdefenses

Posted on October 29, 2024 by Victor Sergeev, Amged Wageh, Ahmed Khlief

Kaspersky experts analyze cyberdefense weak points, including patch management, policy violations and MSSP issues, and real-world cases where compromise assessment helped detect and mitigate incidents. Continue reading Risk reduction redefined: How compromise assessment helps strengthen cyberdefenses→

GitHub patches critical vulnerability in its Enterprise Servers

Posted on October 16, 2024 by Christian Vasquez

The “severe” flaw could allow attackers full access to instances.

The post GitHub patches critical vulnerability in its Enterprise Servers appeared first on CyberScoop.

Continue reading GitHub patches critical vulnerability in its Enterprise Servers→

White House is prioritizing secure internet routing, using memory safe languages

Posted on October 9, 2024 by Christian Vasquez

National Cyber Director Harry Coker says the Biden administration is focusing on securing foundational technologies.

The post White House is prioritizing secure internet routing, using memory safe languages appeared first on CyberScoop.

Continue reading White House is prioritizing secure internet routing, using memory safe languages→

Microsoft offers updates on 117 vulnerabilities on Patch Tuesday

Posted on October 9, 2024 by AJ Vicens

The vulnerabilities are tied to the Microsoft Management Console and Windows MSHTML Platform.

The post Microsoft offers updates on 117 vulnerabilities on Patch Tuesday appeared first on CyberScoop.

Continue reading Microsoft offers updates on 117 vulnerabilities on Patch Tuesday→

Research reveals vulnerabilities in routers that left 700,000-plus exposed

Posted on October 2, 2024 by Tim Starks

ForeScout said one of them warranted rating at the maximum severity level, although DrayTek has issued patches.

The post Research reveals vulnerabilities in routers that left 700,000-plus exposed appeared first on CyberScoop.

Continue reading Research reveals vulnerabilities in routers that left 700,000-plus exposed→

After Code Execution, Researchers Show How CUPS Can Be Abused for DDoS Attacks

Posted on October 2, 2024 by Eduard Kovacs

Over 58,000 internet-exposed CUPS hosts can be abused for significant DDoS attacks, according to Akamai.
The post After Code Execution, Researchers Show How CUPS Can Be Abused for DDoS Attacks appeared first on SecurityWeek.
Continue reading After Code Execution, Researchers Show How CUPS Can Be Abused for DDoS Attacks→

Critical Zimbra Vulnerability Exploited One Day After PoC Release

Posted on October 2, 2024 by Ionut Arghire

A critical-severity vulnerability in Zimbra has been exploited in the wild to deploy a web shell on vulnerable servers.
The post Critical Zimbra Vulnerability Exploited One Day After PoC Release appeared first on SecurityWeek.
Continue reading Critical Zimbra Vulnerability Exploited One Day After PoC Release→