Remove Authentication Remove Document Remove Military
article thumbnail

Security Affairs newsletter Round 462 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

Threat actors breached two crucial systems of the US CISA CISA adds JetBrains TeamCity bug to its Known Exploited Vulnerabilities catalog Critical Fortinet FortiOS bug CVE-2024-21762 potentially impacts 150,000 internet-facing devices QNAP fixed three flaws in its NAS devices, including an authentication bypass Threat actors breached two crucial systems (..)

article thumbnail

GUEST ESSAY: Theft of MQ-9 Reaper docs highlights need to better protect ‘high-value assets’

The Last Watchdog

military information for sale on the Dark Web for a nominal sum, in and of itself, is unfortunate and unremarkable. Department of Defense (DoD) generally handles unclassified documents such as these through the “Non-classified Internet Protocol Router Network,” or NIPRNet. What other documents could have been stored and exfiltrated?

Military 145
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

North Korea-linked APT37 exploited IE zero-day in a recent attack

Security Affairs

“This attack requires an authenticated client to click a link in order for an unauthenticated attacker to initiate remote code execution.” Cyber attacks conducted by the APT37 group mainly targeted government, defense, military, and media organizations in South Korea.

Military 123
article thumbnail

GUEST ESSAY: Why the hack of South Korea’s weapons, munitions systems was so predictable

The Last Watchdog

The disclosure that malicious intruders hacked the computer systems of the South Korean government agency that oversees weapons and munitions acquisitions for the country’s military forces is not much of a surprise. So each time an admin wants to use the power of their position, they are required to re-authenticate.

article thumbnail

Experts warn of mass exploitation of Ivanti Connect Secure VPN flaws

Security Affairs

is an Authentication Bypass issue that resides in the web component of Ivanti ICS 9.x, An authenticated administrator can exploit the issue by sending specially crafted requests and execute arbitrary commands on the appliance. The flaw CVE-2023-46805 (CVSS score 8.2) x and Ivanti Policy Secure. x) and Ivanti Policy Secure.

article thumbnail

Ukraine’s intelligence service hacked Russia’s Federal Air Transport Agency, Rosaviatsia

Security Affairs

“The Defence Intelligence of Ukraine informs that as a result of a successful complex special operation in cyberspace, a large volume of confidential documents of the structural subdivision of the Russian Ministry of Transport – the Federal Air Transport Agency (Rosaviatsia) – is now acquired.”

Military 120
article thumbnail

Hacker breaches key Russian ministry in blink of an eye

Security Affairs

However, evidence suggests that the rogue superstate’s cyber capabilities are as weak as its military stance in Ukraine, especially when met with resistance. Spurred into action by the invasion of Ukraine, Spielerkid89 decided to investigate whether he could find Russian IPs with disabled authentication to fool with.