February 2024 - Page 21 of 69 - Cyber Security News

NCSC Sounds Alarm Over Private Branch Exchange Attacks

The UK’s National Cyber Security Centre has produced new guidance for smaller firms on PBX attacks Read More

February 21, 2024

Attacker Breakout Time Falls to Just One Hour

It now takes threat actors on average just 62 minutes to move laterally from initial access, Crowdstrike claims Read More

February 21, 2024

Advisories

SEC Consult SA-20240220-0 :: Multiple Stored Cross-Site Scripting Vulnerabilities in OpenOLAT (Frentix GmbH)

Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Feb 20 SEC Consult Vulnerability Lab Security Advisory < 20240220-0 > ======================================================================= title: Multiple Stored...

February 21, 2024

Advisories

Re: Buffer Overflow in graphviz via via a crafted config6a file

Posted by Matthew Fernandez on Feb 20 The fix for this ended up landing in Graphviz 10.0.1, available at https://graphviz.org/download/. Details of this CVE (CVE-2023-46045)...

February 21, 2024

Advisories

CVE-2024-24681: Insecure AES key in Yealink Configuration Encrypt Tool

Posted by Jeroen J.A.W. Hermans via Fulldisclosure on Feb 20 CloudAware Security Advisory CVE-2024-24681: Insecure AES key in Yealink Configuration Encrypt Tool ======================================================================== Summary ========================================================================...

February 21, 2024

Advisories

Microsoft Windows Defender / Backdoor:JS/Relvelshe.A / Detection Mitigation Bypass

Posted by hyp3rlinx on Feb 20 [+] Credits: John Page (aka hyp3rlinx) [+] Website: hyp3rlinx.altervista.org [+] Source: https://hyp3rlinx.altervista.org/advisories/Windows_Defender_Backdoor_JS.Relvelshe.A_Detection_Mitigation_Bypass.txt [+] twitter.com/hyp3rlinx [+] ISR: ApparitionSec [Vendor] www.microsoft.com...

February 21, 2024

Advisories

Microsoft Windows Defender / VBScript Detection Bypass

Posted by hyp3rlinx on Feb 20 [+] Credits: John Page (aka hyp3rlinx) [+] Website: hyp3rlinx.altervista.org [+] Source: https://hyp3rlinx.altervista.org/advisories/MICROSOFT_WINDOWS_DEFENDER_VBSCRIPT_TROJAN_MITIGATION_BYPASS.txt [+] twitter.com/hyp3rlinx [+] ISR: ApparitionSec [Vendor] www.microsoft.com...

February 21, 2024

Advisories

Microsoft Windows Defender / Trojan.Win32/Powessere.G / Detection Mitigation Bypass Part 3

Posted by hyp3rlinx on Feb 20 [+] Credits: John Page (aka hyp3rlinx) [+] Website: hyp3rlinx.altervista.org [+] Source: https://hyp3rlinx.altervista.org/advisories/MICROSOFT_WINDOWS_DEFENDER_TROJAN.WIN32.POWESSERE.G_MITIGATION_BYPASS_PART_3.txt [+] twitter.com/hyp3rlinx [+] ISR: ApparitionSec [Vendor] www.microsoft.com...

February 21, 2024

Advisories

ZDI-24-184: Inductive Automation Ignition getParams Argument Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Inductive Automation Ignition. User interaction is required to exploit this vulnerability in...

February 21, 2024

Advisories

ZDI-24-185: Inductive Automation Ignition getJavaExecutable Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Inductive Automation Ignition. User interaction is required to exploit this vulnerability in...

February 21, 2024

Sitting Ducks DNS Attacks Put Global Domains at Risk

Microsoft Power Pages Misconfiguration Leads to Data Exposure

ShrinkLocker ransomware: what you need to know

Massive Telecom Hack Exposes US Officials to Chinese Espionage

IT specialist Jack Teixeira jailed for 15 years after leaking classified military documents on Discord

New iOS Security Feature Makes It Harder for Police to Unlock Seized Phones

API Security in Peril as 83% of Firms Suffer Incidents

Bank of England U-turns on Vulnerability Disclosure Rules

LevelBlue Cybersecurity Awareness Month Recap

Month: February 2024

NCSC Sounds Alarm Over Private Branch Exchange Attacks

Attacker Breakout Time Falls to Just One Hour

SEC Consult SA-20240220-0 :: Multiple Stored Cross-Site Scripting Vulnerabilities in OpenOLAT (Frentix GmbH)

Re: Buffer Overflow in graphviz via via a crafted config6a file

CVE-2024-24681: Insecure AES key in Yealink Configuration Encrypt Tool

Microsoft Windows Defender / Backdoor:JS/Relvelshe.A / Detection Mitigation Bypass

Microsoft Windows Defender / VBScript Detection Bypass

Microsoft Windows Defender / Trojan.Win32/Powessere.G / Detection Mitigation Bypass Part 3

ZDI-24-184: Inductive Automation Ignition getParams Argument Injection Remote Code Execution Vulnerability

ZDI-24-185: Inductive Automation Ignition getJavaExecutable Directory Traversal Remote Code Execution Vulnerability