Aggregator

A vulnerability classified as critical was found in Sun Java Plugin 1.4.2. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper privilege management. This vulnerability is known as CVE-2003-1516. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to disable the affected component.

A vulnerability was found in Linux Kernel up to 5.10.110/5.15.33/5.16.19/5.17.2. It has been rated as critical. Affected by this issue is the function pm8001_chip_fw_flash_update_req. The manipulation leads to memory leak. This vulnerability is handled as CVE-2022-49119. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.10.110/5.15.33/5.16.19/5.17.2. This issue affects the function ceph_readdir. The manipulation leads to memory leak. The identification of this vulnerability is CVE-2022-49107. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.17.2. It has been classified as critical. This affects the function qede_build_skb. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2022-49084. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 5.15.33/5.16.19/5.17.2. Affected by this issue is the function ceph_get_snapdir. The manipulation leads to privilege escalation. This vulnerability is handled as CVE-2022-49109. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

In today’s rapidly changing digital environment, APIs play a crucial role in modern business, facilitating smooth connectivity and data sharing. Yet, this interconnected nature brings significant security and privacy risks, as evidenced by the Federal Trade Commission's (FTC) recent settlement with GoDaddy. This settlement serves as a stark reminder that strong API security is no longer just a good security practice but is now a legal obligation.

GoDaddy’s API Security Breaches

The FTC's actions against GoDaddy arose from the company’s failure to implement suitable security measures, which resulted in repeated data breaches between 2019 and 2022. These incidents exposed sensitive customer information, including usernames, passwords, and employee credentials. The FTC’s investigation highlighted several critical API security shortcomings:

• Inadequate API Authentication: One API from GoDaddy compromised sensitive customer data by lacking multi-factor authentication (MFA) and encryption.
• Insufficient API Monitoring: GoDaddy did not implement vital security features such as rate-limiting, logging, and anomaly detection, which allowed unauthorized access to 1.2 million customer records.‍
• Weak Access Controls: The company's APIs disclosed admin credentials and encryption keys, enabling attackers to compromise websites.

FTC-Required API Security Measures

As part of this settlement, the FTC imposed a comprehensive security regimen on GoDaddy, introducing, among other things, various API security requirements. These requirements reflect the FTC’s increased scrutiny of API security and offer a clear structure for businesses to adopt:

• Encrypted API Communications: APIs used for delivering services or involving personally identifiable information (PII) must utilize HTTPS for all requests, with TLS encryption for data in transit.
• Access Control: API requests should be authenticated using a method that safeguards authenticity at the session level and includes adequate protections against session hijacking and information tampering.
• Rate Limiting: API connections must implement suitable rate limiting to guard against abuse and distributed denial-of-service attacks.
• Monitoring & Anomaly Detection: Both inbound and outbound API traffic should be diligently monitored for suspicious activities and attacks.‍
• Audit Logs & Incident Response: API security logs must be maintained and analyzed to detect and respond to breaches.

Implications for Law and Business

The GoDaddy settlement highlights the significant legal and business ramifications that arise from inadequate API security. Companies that neglect API security may face several consequences, including:

• Regulatory Risks: The FTC has shown a readiness to take action against companies with insufficient API security measures. Noncompliance can lead to scrutiny from the FTC, financial penalties, and government oversight.
• Reputation Damage: API security breaches can intrinsically harm a company’s reputation, reducing customer trust and inflicting long-term damage to the brand.‍
• Operational disruptions: A compromised API can result in data theft, fraud, and service disruptions that affect business continuity and revenue

How Salt Security Can Assist

Salt Security is the foremost API security platform that aids organizations in discovering, protecting, and managing their APIs at scale. The Salt platform offers a full range of capabilities to meet the FTC’s API security requirements, helping organizations develop and maintain a robust API security framework, including:

• API Discovery and Inventory: Automatically identify and catalog all APIs, including shadow APIs, third-party APIs, and legacy systems.
• API Posture Governance: Continuously assess and monitor your APIs’ security posture, delivering insights into potential risks and improvement areas. This includes identifying and mitigating vulnerabilities, enforcing security protocols, and tracking compliance with regulations.
• API Threat Protection: Immediately detect and prevent API attacks, including those from the OWASP Top 10 and complex business logic threats.
• API Vulnerability Management: Spot and address API vulnerabilities before exploitation, including issues linked to authentication, authorization, and data exposure.
• API Compliance: Ensure adherence to regulatory frameworks and standards, such as the API security requirements espoused by the FTC, offering tools and reporting features to validate compliance with security best practices.

By adopting the Salt Security platform, organizations can methodically tackle API security threats, reduce potential legal and business fallout, and protect their digital assets. Schedule a demo to see Salt Security in action.

The post The FTC Is Watching: GoDaddy’s Settlement Sends a Clear Message on API Security appeared first on Security Boulevard.

In a physics first, a team including scientists from the National Institute of Standards and Technology (NIST) has created a way to make beams of neutrons travel in curves. These Airy beams (named for English scientist George Airy), which the team

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

• CVE-2025-31200 Apple Multiple Products Memory Corruption Vulnerability
• CVE-2025-31201 Apple Multiple Products Arbitrary Read and Write Vulnerability
• CVE-2025-24054 Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

CISA released six Industrial Control Systems (ICS) advisories on April 17, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

• ICSA-25-107-01 Schneider Electric Trio Q Licensed Data Radio
• ICSA-25-107-02 Schneider Electric Sage Series
• ICSA-25-107-03 Schneider Electric ConneXium Network Manager
• ICSA-25-107-04 Yokogawa Recorder Products
• ICSA-24-326-04 Schneider Electric Modicon M340, MC80, and Momentum Unity M1E (Update A)
• ICSA-25-058-01 Schneider Electric Communication Modules for Modicon M580 and Quantum Controllers (Update A)
   

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

由矛盾现象到SQL注入

这篇文章主要分享在实际项目中各类SQL注入漏洞形成的原因，并且使用了较多企业使用的开源项目jeecg-boot为例子，从而进一步理解SQL注入漏洞是如何形成以及为什么会出现sql注入漏洞。

Making ANY.RUN’s products better for the benefit of businesses, organizations, and SOC teams is our top priority. To get maximum value out of our solutions, we provide them with API, a tool enabling users to integrate our services into their security infrastructure. And now, to make this process even smoother, we introduce a software development […]

The post Seamlessly Integrate ANY.RUN’s Services into Your Infrastructure via SDK appeared first on ANY.RUN's Cybersecurity Blog.

French fintech leader Harvest SAS has become the latest high-profile victim of a sophisticated ransomware attack, culminating this week in the public release of a trove of sensitive stolen data. The breach, orchestrated by the rapidly emerging cybercriminal group known as Run Some Wares, underscores the mounting threats facing financial technology firms and their clients worldwide, as per […]

The post Harvest Ransomware Attack: Stolen Data Now Publicly Disclosed appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Multiple state-sponsored hacking groups from Iran, North Korea, and Russia have been found leveraging the increasingly popular ClickFix social engineering tactic to deploy malware over a three-month period from late 2024 through the beginning of 2025. The phishing campaigns adopting the strategy have been attributed to clusters tracked as TA427 (aka Kimsuky), TA450 (aka MuddyWater),

杭州师范大学第六届网络与信息安全竞赛

A major security flaw has been uncovered in the widely used Erlang/OTP SSH implementation, drawing urgent attention from the cybersecurity community worldwide. The vulnerability, tracked as CVE-2025-32433, exposes systems to unauthenticated remote code execution, potentially allowing hackers to fully compromise affected servers with ease. Overview of the vulnerability The vulnerability was discovered by a research team […]

The post Critical Erlang/OTP SSH Vulnerability Allow Hackers Execute Arbitrary Code Remotely appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Talking about AI: Definitions Artificial Intelligence (AI) — AI refers to the simulation of human intelligence in machines, enabling them to perform tasks that typically require human intelligence, such as decision-making and problem-solving. AI is the broadest concept in this field, encompassing various technologies and methodologies, including Machine Learning (ML) and Deep Learning. Machine

On Wednesday, CISA warned of heightened breach risks after the compromise of legacy Oracle Cloud servers earlier this year and highlighted the significant threat to enterprise networks. [...]

S4 EP 5: What’s changed, what’s working, and how to prepare for when, not if, incidents hit critical infrastructure.

The post How Critical Infrastructure Leaders Are Rethinking Cybersecurity appeared first on Security Boulevard.