Security Affairs

FEBRUARY 17, 2024

CISA warns that the Akira Ransomware gang is exploiting the Cisco ASA/FTD vulnerability CVE-2020-3259 (CVSS score: 7.5) The issue was listed by CISA as known to be used in ransomware campaigns, but the agency did not reveal which ransomware groups are actively exploiting the issue. in attacks in the wild. This week the U.S.

Ransomware 132

Ransomware Education Cybersecurity Passwords 132

Security Affairs

MARCH 6, 2024

Google addressed the issue in June 2023, the IT giant is aware of “limited, targeted exploitation.” “There are indications that CVE-2023-21237 may be under limited, targeted exploitation.” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – ransomware, CISA )

IT 127

IT Cybersecurity Ransomware Risk 127

Security Affairs

JANUARY 9, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added an Apache Superset flaw, tracked as CVE-2023-27524 , to its Known Exploited Vulnerabilities (KEV) catalog. In April 2022, Horizon3 researchers discovered a remote code execution, tracked as CVE-2023-27524 (CVSS score: 8.9), in Apache Superset.

IT 119

IT Cybersecurity Authentication Ransomware 119

Security Affairs

DECEMBER 11, 2023

Below is the list of the issues added to the catalog: CVE-2023-41265 (CVSS score 9.6)- Qlik Sense HTTP Tunneling Vulnerability: Qlik Sense contains an HTTP tunneling vulnerability that allows an attacker to escalate privileges and execute HTTP requests on the backend server hosting the software. Last week the U.S.

IT 118

IT Cybersecurity Ransomware Risk 118

Security Affairs

JANUARY 11, 2023

The flaw was exploited by the Play ransomware group in a recent attack against the Cloud services provider Rackspace. The ransomware attack took place on December 2, 2022, threat actors exploited a previously unknown security exploit , dubbed OWASSRF by Crowdstrike , to gain initial access to the Rackspace Hosted Microsoft Exchange.

IT 98

IT Ransomware Cloud Cybersecurity 98

Security Affairs

APRIL 8, 2023

US CISA has added Veritas Backup Exec flaws, which were exploited in ransomware attacks, to its Known Exploited Vulnerabilities catalog. The CVE-2023-26083 flaw in the Arm Mali GPU driver is chained with other issues to install commercial spyware, as reported by Google’s Threat Analysis Group (TAG) in a recent report.

IT 98

IT Ransomware Education Cybersecurity 98

Security Affairs

FEBRUARY 11, 2023

US CISA added actively exploited flaws in Fortra MFT, Intel driver, and TerraMaster NAS, respectively tracked as CVE-2023-0669 , CVE-2015-2291 , and CVE-2022-24990 , to its Known Exploited Vulnerabilities Catalog. The CVE-2023-0669 flaw is a remote code injection issue that impacts GoAnywhere MFT. sys and IQVW64.sys.

IT 98

IT Ransomware Authentication Access 98