Aggregator

Как вредоносный загрузчик Purrglar обошёл хвалёную защиту Apple?

Пользователям рекомендуют сменить пароли и подключить двухфакторную идентификацию.

A vulnerability, which was classified as critical, has been found in Qualifio Wheel of fortune. This issue affects some unknown processing. The manipulation leads to path traversal. The identification of this vulnerability is CVE-2025-0614. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as critical was found in Elastic Defend up to 8.13.2 on Windows. This vulnerability affects unknown code. The manipulation leads to handling of exceptional conditions. This vulnerability was named CVE-2024-37284. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Elasticsearch up to 7.17.20/8.13.2. This affects an unknown part. The manipulation leads to allocation of resources. This vulnerability is uniquely identified as CVE-2024-43709. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Elastic Kibana up to 7.17.22/8.14.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /api/log_entries/summary. The manipulation leads to allocation of resources. This vulnerability is handled as CVE-2024-52973. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

The “email bombing + posing as tech support via Microsoft Teams” combination is proving fruitful for two threat actors looking to deliver ransomware to organizations, and they seem to be ramping up their efforts. “Sophos MDR has observed more than 15 incidents involving these tactics in the past three months, with half of them in the past two weeks,” the company’s incident responders have warned today. The threat actors are social-engineering their way in To … More →

The post Ransomware attackers are “vishing” organizations via Microsoft Teams appeared first on Help Net Security.

Humans make mistakes all the time. All of us do, every day, in tasks both new and routine.

Questo report offre un quadro sintetico sui numeri delle principali campagne malevole osservate

CISA released three Industrial Control Systems (ICS) advisories on January 21, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

• ICSA-25-021-01 Traffic Alert and Collision Avoidance System (TCAS) II
• ICSA-25-021-02 Siemens SIMATIC S7-1200 CPUs
• ICSA-25-021-03 ZF Roll Stability Support Plus (RSSPlus)

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

Additional Links: https://github.com/Polydet/polyglot-database/

Хитрый инструмент играет на доверии, незаметно разрушая защитные барьеры.

TP-Link draws the attention of the US Government.

持续领先

#科技资讯 普联 (TP-LINK) 路由器 DDNS 域名开始要求实名认证，华硕则是直接下线了自家的 DDNS 域名。据普联发布的通知，所有使用 TPDDNS 域名的用户都必须在 2

Мозговой имплант открыл новые возможности.