A threat offer to sell a zero-day exploit for Atlassian’s Jira in a underground forum. This exploit can be used on the latest version of Jira desktop app and Jira integrated with Confluence. According to the offer, It does not require any login credentials and can also work with Okta …
Read More »US bans Kaspersky software over Russia ties
The US plans to ban the sale of Kaspersky antivirus software due to its alleged ties to the Kremlin. Gina Raimondo, the US Commerce Secretary, said that Moscow’s control over the company was a big threat to US infrastructure and services. She said that the US was compelled to take …
Read More »China-linked spies target Asian Telcos since 2021
A group believed to be linked to China has hacked multiple telecom operators in an Asian country since 2021, according to the Symantec Threat Hunter Team. The attackers used tools linked to Chinese spying groups. They installed several backdoors on targeted companies’ networks to steal passwords. “The attacks have been …
Read More »Azad selected expert reviewer for CISA Review Manual 28th Edition
Certified Information Systems Auditor (CISA) is a globally recognized professional certification for information systems audit, control, and security. It’s offered by ISACA (Information Systems Audit and Control Association). CISA holders demonstrate expertise in assessing an organization’s IT controls and processes to identify and manage risks. The CISA Review Manual, 28th …
Read More »Attackers Target AWS Vaults, Buckets, and Secrets
DataDog Security Labs found a worrying campaign targeting Amazon Web Services (AWS), showing a new wave of harmful activity aimed at compromising important cloud resources. The attackers are using various methods, focusing on finding and possibly stealing data from AWS Secrets Manager, S3 buckets, and S3 Glacier vaults. Between May …
Read More »CISA released Guidance for Modern Approaches to Network Access Security
CISA and the FBI released guidance, Modern Approaches to Network Access Security, with support from other organizations including New Zealand’s GCSB, CERT-NZ, and the Canadian CCCS. Business owners of all sizes are encouraged to adopt stronger security solutions like Zero Trust, Secure Service Edge (SSE), and Secure Access Service Edge …
Read More »CISA Releases One Industrial Control Systems Advisory
On June 18, 2024, CISA released an advisory about Industrial Control Systems (ICS). These advisories give important information about security issues, vulnerabilities, and exploits related to ICS. ICSA-24-170-01 RAD Data Communications SecFlow-2: Successful exploitation of this vulnerability could allow an attacker to obtain files from the operating system by crafting …
Read More »VMware Patche vCenter Server, Cloud Foundation and vSphere ESXi
VMware has fixed critical security flaws in Cloud Foundation, vCenter Server, and vSphere ESXi. These flaws could be used for privilege escalation and remote code execution. Vulnerabilities include: CVE-2024-37079 & CVE-2024-37080 (CVSS scores: 9.8): Multiple heap-overflow vulnerabilities in the implementation of the DCE/RPC protocol that could allow an unauthorized individual …
Read More »Hackers use F5 BIG-IP malware in cyber campaign for years
In late 2023, Sygnia researchers investigated a cyber incident involving a major organization that was reportedly caused by a threat group known as ‘Velvet Ant.’ The cyberspies deployed custom malware on F5 BIG-IP appliances to gain persistent access to the internal network of the target organization and steal sensitive data. …
Read More »Dahua Cameras 0day Vulnerability offer to sell
A threat actor has announced selling a 0day vulnerability for Dahua cameras. The bad actor claimed this vulnerability supposedly works with all versions of the device. The threat actor announced the vulnerability allowed unrestricted access and control of the camera and describing it as a Remote Code Execution (RCE) exploit. …
Read More »