Avatar
Herjan Security 2y ago

Threat and Vulnerability Roundup:

1. Cisco FXOS SNMP Service Flaw allows remote attackers to cause a denial-of-service condition.

2. Notepad++ Flaw exposes vulnerabilities to threat actors for malicious purposes.

3. VMware Aria Operations faced critical vulnerabilities that allowed authentication bypass and arbitrary write access.

4. Cisco ASA SSL VPN Appliances are targeted by hackers, exploiting weak passwords and launching ransomware attacks.

5. Citrix NetScaler systems remain unpatched, resulting in targeted attacks and malware delivery.

6. BGP Error Handling Flaw can propagate like a computer worm, posing a risk to the internet's functionality.

7. Critical Flaw in Zip Libraries makes widely used ZIP packages susceptible to compromise.

8. Splunk IT Service Intelligence Injection Flaw allows unauthenticated log injection.

9. Junos OS Flaw in BGP sessions can be exploited for DoS attacks.

10. Microsoft Edge Privilege Escalation vulnerability requires user interaction for unauthorized remote access.

11. Google Chrome Security Update includes a high-severity security patch to address vulnerabilities.

12. ArubaOS Switches face vulnerabilities including stored XSS, DoS, and memory corruption.

13. Cisco BroadWorks vulnerability allows cross-site scripting, enabling arbitrary code execution on the server.

14. VMware SAML Token Signature Bypass vulnerability allows threat actors to perform VMware Guest operations.

15. New Cyber Research focuses on uncovering malicious domains and threats in AI models.

16. Smoke Loader Malware infiltrates systems, gathering geolocation information through Wi-Fi scanning.

17. DreamBus Botnet vulnerability allows remote code execution through Apache RocketMQ servers.

18. Hackers actively exploit ChatGPT AI models for cybercrime activities.

19. HTML Smuggling enables hackers to launch Nokoyawa ransomware.

20. Top 3 Malware Loaders of 2023 pose challenges for SOC teams.

21. Qakbot infrastructure disrupted by global effort led by the FBI.

22. Windows Container isolation framework can be exploited to bypass organization security.

23. North Korean hackers deploy malicious versions of Python Packages on PyPI.

24. Hackers embed weaponized Word files into PDFs to avoid detection.

25. Polish Railway System Signals compromised by cybercriminals for unknown reasons.

26. Threat actors abuse Google Groups to send fake order messages and steal personal information.

27. Android Trojan MMRat evades detection from traditional antivirus software.

28. DarkGate malware distributed via phishing emails and stolen email threads.

29. BadBazaar malware distributed through Google Play Store targets Uyghurs and other Turkic ethnic minorities.

30. Kinsing malware exploits Openfire vulnerability for unauthorized access.

Hashtags:

#CyberSecurity #ThreatsAndVulnerabilities #Cisco #Notepad++ #VMware #CyberAttacks #Citrix #BGP #ZIPLibraries #SplunkITSI #JunosOS #MicrosoftEdge #GoogleChrome #ArubaOSSwitches #BroadWorks #VMwareTools #MaliciousDomains #AIModels #MalwareLoaders #Qakbot #WindowsContainer #PythonPackages #PolishRailway #FakeOrders #AndroidTrojan #DarkGateMalware #BadBazaarMalware #KinsingMalware #CyberCrime

https://cybersecuritynews.com/threat-and-vulnerability-roundup-aug27/

Reply to this note

Please Login to reply.

Discussion

No replies yet.