Thousands of Juniper devices vulnerable to unauthenticated RCE flaw
Thousands of Juniper Junos firewalls still open to hijacks, exploit code available to all
Nearly 12,000 Juniper Firewalls Found Vulnerable to Recently Disclosed RCE Vulnerability
Thousands of Juniper Appliances Vulnerable to New Exploit
Cyberespionage and state-directed cybercrime. BlackCat's recent activity. Water commission under attack. Notes on cyber phases of a hybrid war.
12,000 JUNIPER SRX FIREWALLS AND EX SWITCHES VULNERABLE TO CVE-2023-36845
Microsoft AI Researchers Accidentally Exposed Tens of Terabytes of Sensitive Data
Snap! -- Halloween Rules, Artificial Neurons, Artificial Womb, Helpdesk Hackers
A new Agent Tesla variant. Hot wallet hacks. DevSecOps and AI. Notes on the labor market. Two threats in a hybrid war: Fancy Bear and NoName057(16).
Risky Biz News: China cracks down on the SE Asia scam call center problem
CISA warns of critical Apache RocketMQ bug exploited in attacks
CISA Adds Critical RocketMQ Bug to Must-Patch List
US CISA ADDED CRITICAL APACHE ROCKETMQ FLAW TO ITS KNOWN EXPLOITED VULNERABILITIES CATALOG
CISA adds critical Apache RocketMQ flaw in KEV catalog
Cyberespionage, attributed and unattributed. Election interference in Ecuador. Carderbee hits Hong Kong. No breach at auDA. Hacktivism in the hybrid war.
Over 3,000 Openfire servers vulnerable to takover attacks
3,000 Openfire Servers Exposed to Attacks Targeting Recent Vulnerability
Risky Biz News: South Korea is investigating "spy chip" in Chinese weather measuring equipment
Thousands of Unpatched Openfire XMPP Servers Still Exposed to High-Severity Flaw
Recent Vulnerability Puts 3,000 Openfire Servers at Risk of Attack
Researchers warn that more than 3,000 unpatched Openfire servers are exposed to attacks using an exploit for a recent flaw.
Cyber Security Today, Week in Review for the week ending Friday, August 25, 2023
Cyber Security Headlines: Lazarus exploits ManageEngine, Rockwell ThinManager vulnerabilities, Mississippi hospital attack
Weekly Vulnerability Recap – August 28, 2023 – Windows, Ivanti, Adobe Hit By Flaws
GO CRYPTO IN PRACTICE, EXCEL EXECUTES PYTHON, PROTECTING USERS, DARPA DISTILLS – ASW #253
Cyberespionage on many fronts. Advanced spearphishing, CPU vulnerabilities. Ransomware and other threat trends. Patch Tuesday.
Super Admin elevation bug puts 900,000 MikroTik devices at risk
Patch Now: Up to 900K MikroTik Routers Vulnerable to Total Takeover
900,000 MicroTik routers at risk; most affected in Brazil and India
Cyber Security Headlines: TETRA encryption flaws, Zenbleed strikes, Norway’s government hit with Ivanti flaw
MikroTik OS bug exposes over 500,000 devices
MikroTik vulnerability could be used to hijack 900,000 routers (CVE-2023-30799)
Over 900,000 MikroTik Routers Exposed to Critical Bug
Risky Biz News: Norwegian government hacked with MobileIron zero-day
Over 900K MikroTik routers vulnerable to critical bug
Over 500K MikroTik RouterOS systems potentially exposed to hacking due to critical flaw
Code Execution Vulnerability Impacts 900k MikroTik Devices
Critical MikroTik RouterOS Vulnerability Exposes Over Half a Million Devices to Hacking
Researchers say more than 900,000 MikroTik routers vulnerable to hackers
FLIPPER ZEROES, THE “KIA BOYS”, RFID TAGS FOR AMAZON, & PCI WIZARDRY – PSW #792
Critical Privilege Escalation Flaw Risks 900K+ MikroTik Routers
July 28, 2023 – At least 8 million Americans hit in the latest MOVEit hack, and more
US senator victim-blames Microsoft for Chinese hack
Week in review: Ivanti zero-day exploited, MikroTik vulnerability could compromise 900,000 routers
THIS WEEK IN SECURITY: YOUR CAR’S EXTENDED WARRANTY, SEIZING THE FEDIVERSE, AND ARM MTE
Actively exploited vulnerability threatens hundreds of solar power stations
3 Critical RCE Bugs Threaten Industrial Solar Panels, Endangering Grid Systems
Two-thirds of internet-facing SolarView systems still vulnerable to critical bug
Exploited Solar Power Product Vulnerability Could Expose Energy Organizations to Attacks
Over 130,000 solar energy monitoring systems exposed online
SolarView flaw exposes hundreds of solar farms
Photovoltaik-Monitoring: Sicherheitslücken in Solarview werden angegriffen
Unpatched SolarView Systems Vulnerable to Exploits
Solar panel stations could fall prey to this devious security hack
Threat actors quick to exploit proof-of-concept code
CVE-2022-29303 flaw in SolarView product can be exploited in attacks against the energy sector
Hundreds of Solar Panels at Risk of Getting Hacked
Nagoya port recovers from LockBit 3.0. Charming Kitten sighting. Spyware in Play store apps. Solar panel vulnerabilities.
Cyber Security Headlines: Shell MOVEit breach, Pepsi bottler breach, INTERPOL nabs OPERA1ER
Hundreds of Solar Power Stations Are Running Software With Gaping Security Holes
Critical RCE Bugs Expose Hundreds of Solar Power Stations
VulnCheck detects remote command injection vulnerability in Contec SolarView series, affecting ICS hardware
Security flaw threatens hundreds of solar power stations
Risky Biz News: US and Canada warn of new Truebot malware variant
Contec SolarView: Critical Bug Unpatched After 14 MONTHS
Critical security vulnerabilities expose SolarView monitoring system on the open Internet
Liberté,Égalité, Spyware: France okays cops snooping on phones
IT’S ALIVE!, SLOW MIGRATIONS, HIDING ON THE NET, BLACKLOTUS SOURCE, & GASLIGHTING – PSW #790
The IT/OT cultural divide in the federal space.
Fake Linux vulnerability exploit drops data-stealing malware
ControlLogix RCE exploit. Japan’s largest port disrupted by ransomware. Cl0p breaches Schneider Electric and Siemens Energy. Solar panel vulnerabilities.
Attackers set up rogue GitHub repos with malware posing as zero-day exploits
Fake zero-day PoC exploits on GitHub push Windows, Linux malware
Fake Github PoCs are spreading Windows and Linux malware
Malicious Actors Exploit GitHub to Distribute Fake Exploits
Someone is posing as a fake security company to create malicious GitHub repositories
Fake Researcher Profiles Spread Malware Through GitHub Repositories as PoC Exploits
Hackers create fake GitHub profiles to deliver malware through repositories
Cyber Security Headlines: China ESXi exploit, WooCommerce vulnerability, Lockbit ransom report
Ep 1845, Chinese threat actors reel in Barracuda appliances. Diicot: the gang formerly known as Mexals, with Romanian ties. Recent Russian cyberespionage against Ukraine and its sympathizers,
Fake IT security researchers disguise malware as proof-of-concept exploits
Watch out - a fake security researcher is pushing malware disguised as zero-day PoC
Network Security News Summary for Thursday June 15th, 2023,
Fake company created malicious GitHub repositories
Fake Security Researcher Accounts Pushing Malware Disguised as Zero-Day Exploits
Beware of fake security researchers who deliver malware
Hackers impersonate security analysts to advertise bogus zero day exploits laced with malware
Daily Briefing V12 Issue 115
Attackers Create Synthetic Security Researchers to Steal IP
Several U.S. federal departments hit by MOVEit hack
June 16, 2023 – Beware of fake profiles on GitHub, and are you an optimist or pessimist CISO?
Risky Biz News: LockBit gang made $91 million from US attacks
Warning: Fake GitHub Repos Delivering Malware as PoCs
Guess what happened to this US agency using outdated software?
Guess what happened to this US agency that didn't patch?
Millions Face RepoJacking Risk on GitHub Repositories
THIS WEEK IN SECURITY:CAMARO DRAGON, ROWPRESS, AND REPOJACKING
Fake PoC for Linux Kernel Vulnerability on GitHub Exposes Researchers to Malware
Fake PoC on GitHub lures security researchers to download malware
How to check for new exploits in real time? VulnCheck has an answer
Identity Management and Information Security News for the Week of May 26; SandboxAQ, QuSecure, TrustCloud, and More
Volt Typhoon's potential battlespace prep. Iranian ops against Israeli targets. Updates on cyber gangs. Notes from Russia's war.
Experts devised a new exploit for the PaperCut flaw that can bypass all current detection
VulnCheck researchers devised a new exploit for a recently disclosed critical flaw in PaperCut servers that bypasses all current detections.
Researchers Uncover New Exploits for PaperCut Vulnerability That Can Bypass Detection
Cyber Security Headlines: Royal ransoms Dallas, new PaperCut exploit, CISA’s Mirai warning
Vulnerability in PaperCut MF and NG Allows Attackers to Bypass Security Detections
Cyber Security Today, May 5, 2023 – Data breach at the Metropolitan Opera, and more GoAnywhere MFT victims
Risky Biz News: Facebook takes down NodeStealer malware before it can take off the ground
New PaperCut RCE exploit created that bypasses existing detections
Microsoft: Iranian hacking groups join Papercut attack spree
New Way to Exploit PaperCut Vulnerability Detected
State-sponsored and state-promoted cyber campaigns. Royal ransomware. A new wave of BEC. MtM attacks rising.
PaperCut vulnerability detection methods can be bypassed, and Iranian threat actors have joined the fray.
Microsoft Warns of State-Sponsored Attacks Exploiting Critical PaperCut Vulnerability
Vulnerable PaperCut servers targeted by Iranian hackers
UK GovAssure program to run annual security audits on government departments
Under the Weather, Beating Roulette, Monitoring Macs, ^ XBMC Glory Days
VulnCheck Named CVE Numbering Authority for Common Vulnerabilities and Exposures
Microsoft addresses OneNote malspam problem, promises fixes through the year
Risky Biz News: Team Synacktiv wins a Tesla and a cool half mil at Pwn2Own 2023
Risky Biz News: ODNI report highlights China as the US' biggest cyber threat
Nearly 900 flaws listed in CISA vulnerability catalog
Dozens of Exploited Vulnerabilities Missing From CISA ‘Must Patch’ List
VulnCheck: CISA's KEV missing 42 vulnerabilities from 2022
A wormable PlugX variant. Abusing legitimate services. Compromised webcams. Emotet is back. BlackMamba POC. Hybrid war.
Alert: Active Exploitation of TP-Link, Apache, and Oracle Vulnerabilities Detected
Risky Biz News: White House unveils National Cybersecurity Strategy
The US National Cybersecurity Strategy. Red-teaming critical infrastructure. Cryptojacking. Updates on the hybrid war.
Here's why Biden's new cyber strategy is notable
557 CVEs Added to CISA’s Known Exploited Vulnerabilities Catalog in 2022
Risky Biz News: Russia preparing new Vepr surveillance system
Critical Vulnerabilities You Should Know About
Risky Biz News: EU cybersecurity agencies warn of Chinese APT spying
Cyber threats startup gets seed capital
Cyber threats startup with former Rapid7, Veracode researchers gets seed funding
Innovation Beat Newsletter
VulnCheck Gains $3.2M to Double Its Cybersecurity Team
Vulnerability Intel Company VulnCheck Raises $3.2M
Today’s MSSP, MDR, XDR and Cybersecurity Market News
Threat intel startup VulnCheck nabs $3.2 million seed funding with support from CIA-backed venture capital firm
VulnCheck Raises $3.2M Seed Round for Threat Intel
VulnCheck Raises $3.2M in Seed Funding
Vulnerability intelligence startup nets $3.2m
Who’s responsible for JPMorgan’s $175 million acquisition of Frank, the fintech startup accused of fraud?
Bard misses the boat; Worldcoin seeks a lead
Cyber Seed Money
FireCompass Raised $7M, VulnCheck Got $3.2M, and More Boston Tech News
Security, Funded #80 - More Earnings Reports, Cyber Goes Super (Bowl), and Cyber Takes a Page from IT
Hacktivism: dissidents and auxiliaries. Cl0p claims credit for GoAnywhere exploitation. Treasury on the cloud.
Zscaler acquiring Canonic Security. Sandbox AQ raises $500 million in funding. Labor markets.
Rapid7 and Veracode research receive funding for cyber threats startup
VC funding update: Which Boston-area startups raised money in February?
DEEPWATCH SERIES C, SPAC FADS, LASTPASS, & TYLER TRADES ADRIAN’S INFO FOR CHOCOLATE – ESW #307
Discrepancies Discovered in Vulnerability Severity Ratings
Risky Biz News: Zero-day alert for GoAnywhere file transfer servers
Week In Review: Auto, Security, Pervasive Computing
More than 4,400 Sophos firewall servers remain vulnerable to critical exploits
Over 4,000 Sophos Firewall devices vulnerable to RCE attacks
Over 4,000 Sophos firewall servers still vulnerable to code injection vulnerability
Risky Biz News: Google Search and Ads have a major malware problem
Thousands of Sophos Firewall devices at risk of RCE attacks
Thousands of Sophos servers are vulnerable to this dangerous exploit
About 6% of Internet-Facing Sophos Firewalls Are Exposed to Critical Exploit, Expert Warns
Thousands of Sophos firewalls still vulnerable out there to hijacking
CISA's KEV Catalog Updated with 3 New Flaws Threatening IT Management Systems
Risky Biz News: Disgruntled member doxes and extorts URSNIF gang
Risky Biz News: CryWiper hits Russian courts and mayor offices in data-wiping attacks