News

Google Researchers Claim First Vulnerability Found Using AI

November 4, 2024

Read Time:7 Second

The flaw, an exploitable stack buffer underflow in SQLite, was found by Google’s Big Sleep team using a large language model (LLM)

News

US Says Russia Behind Fake Haitian Voters Video

November 4, 2024

Read Time:8 Second

US government agencies said the video, widely shared on social media, is part of Russia’s broader strategy of undermining the integrity of the Presidential Election

News

Sophos Versus the Chinese Hackers

November 4, 2024

Read Time:4 Second

Really interesting story of Sophos’s five-year war against Chinese hackers.

News

Supply Chain Attack Uses Smart Contracts for C2 Ops

November 4, 2024

Read Time:6 Second

Checkmarx has observed a novel npm supply chain attack using Ethereum smart contracts to manage command-and-control (C2) operations

News

UK Council Sites Recover Following Russian DDoS Blitz

November 4, 2024

Read Time:5 Second

Several UK council websites are back online after being disrupted by Russian hacktivist DDoS attacks

Advisories

firefox-132.0-2.fc39

November 4, 2024

Read Time:6 Second

FEDORA-2024-c4b84c1215

Packages in this update:

firefox-132.0-2.fc39

Update description:

New upstream build (132.0)

Advisories

ZDI-24-1452: Autodesk AutoCAD CATPART File Parsing Memory Corruption Remote Code Execution Vulnerability

November 4, 2024

Read Time:17 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-8592.

Advisories

4 vulnerabilities in ibmsecurity

November 3, 2024

Read Time:21 Second

Posted by Pierre Kim on Nov 03

## Advisory Information

Title: 4 vulnerabilities in ibmsecurity
Advisory URL: https://pierrekim.github.io/advisories/2024-ibmsecurity.txt
Blog URL: https://pierrekim.github.io/blog/2024-11-01-ibmsecurity-4-vulnerabilities.html
Date published: 2024-11-01
Vendors contacted: IBM
Release mode: Released
CVE: CVE-2024-31871, CVE-2024-31872, CVE-2024-31873, CVE-2024-31874

## Product description

## Vulnerability Summary

Vulnerable versions:…

Advisories

32 vulnerabilities in IBM Security Verify Access

November 3, 2024

Read Time:23 Second

Posted by Pierre Kim on Nov 03

## Advisory Information

Title: 32 vulnerabilities in IBM Security Verify Access
Advisory URL: https://pierrekim.github.io/advisories/2024-ibm-security-verify-access.txt
Blog URL: https://pierrekim.github.io/blog/2024-11-01-ibm-security-verify-access-32-vulnerabilities.html
Date published: 2024-11-01
Vendors contacted: IBM
Release mode: Released
CVE: CVE-2022-2068, CVE-2023-30997, CVE-2023-30998, CVE-2023-31001,
CVE-2023-31004, CVE-2023-31005,…

Advisories

chromium-130.0.6723.91-1.fc41

November 3, 2024

Read Time:7 Second

FEDORA-2024-aad3597d9e

Packages in this update:

chromium-130.0.6723.91-1.fc41

Update description:

Update to 130.0.6723.91

Cyber Security News

Monthly Archives: November 2024

Google Researchers Claim First Vulnerability Found Using AI

US Says Russia Behind Fake Haitian Voters Video

Sophos Versus the Chinese Hackers

Supply Chain Attack Uses Smart Contracts for C2 Ops

UK Council Sites Recover Following Russian DDoS Blitz

firefox-132.0-2.fc39

FEDORA-2024-c4b84c1215

Packages in this update:

Update description:

ZDI-24-1452: Autodesk AutoCAD CATPART File Parsing Memory Corruption Remote Code Execution Vulnerability

4 vulnerabilities in ibmsecurity

32 vulnerabilities in IBM Security Verify Access

chromium-130.0.6723.91-1.fc41

FEDORA-2024-aad3597d9e

Packages in this update:

Update description:

News, Advisories and much more