April 2022 - Page 76 of 79 - Cyber Security News

CVE-2021-20238

It was found in OpenShift Container Platform 4 that ignition config, served by the Machine Config Server, can be accessed externally from clusters without authentication....

April 1, 2022

Advisories

CVE-2020-25691

A flaw was found in darkhttpd. Invalid error handling allows remote attackers to cause denial-of-service by accessing a file with a large modification date. The...

April 1, 2022

Advisories

CVE-2020-14479

Sensitive information can be obtained through the handling of serialized data. The issue results from the lack of proper authentication required to query the server...

April 1, 2022

Advisories

CVE-2019-14839

It was observed that while login into Business-central console, HTTP request discloses sensitive information like username and password when intercepted using some tool like burp...

April 1, 2022

Advisories

CVE-2022-26233: Barco Control Room Management Suite File Path Traversal Vulnerability

Posted by Murat Aydemir on Apr 01 *I. SUMMARY* Title: [CVE-2022-2623] Barco Control Room Management Suite File Path Traversal Vulnerability Product: Barco Control Room Management...

April 1, 2022

News

Scammers are Exploiting Ukraine Donations

Authored by Vallabh Chole and Oliver Devane Scammers are very quick at reacting to current events, so they can generate ill-gotten gains. It comes as...

April 1, 2022

Advisories

AcidRain Wiper Suspected in Satellite Broadband Outage in Europe

FortiGuard Labs is aware a report that a new wiper malware was deployed and destroyed data on modems and routers for KA-SAT satellite broadband services,...

April 1, 2022

News

Friday Squid Blogging: Squid Migration and Climate Change

New research on the changing migration of the Doryteuthis opalescens as a result of climate change. News article: Stanford researchers have solved a mystery about...

April 1, 2022

News

Upstart crime site woos Raid Forums orphans

A new crime site for hackers is positioning itself as an alternative to Raid Forums, a popular watering hole for threat actors before it was...

April 1, 2022

News

Exiger launches data-agnostic supply chain risk platform

New York-based risk management company Exiger this week launched a new supply chain risk monitoring service, designed to incorporate a wide and customizeable array of...

April 1, 2022

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Friday Squid Blogging: Squid-A-Rama in Des Moines

Pro-Russian Hacktivists Target South Korea as North Korea Joins Ukraine War

AI Industry is Trying to Subvert the Definition of “Open Source AI”

Major Oilfield Supplier Hit by Ransomware Attack

North Korean Actor Deploys Novel Malware Campaign Against Crypto Firms

Androxgh0st Botnet Adopts Mozi Payloads, Expands IoT Reach

Interlock Ransomware Targets US Healthcare, IT and Government Sectors

Prompt Injection Defenses Against LLM Cyberattacks

Month: April 2022

CVE-2021-20238

CVE-2020-25691

CVE-2020-14479

CVE-2019-14839

CVE-2022-26233: Barco Control Room Management Suite File Path Traversal Vulnerability

Scammers are Exploiting Ukraine Donations

AcidRain Wiper Suspected in Satellite Broadband Outage in Europe

Friday Squid Blogging: Squid Migration and Climate Change

Upstart crime site woos Raid Forums orphans

Exiger launches data-agnostic supply chain risk platform