security bulletin
Protecting Against Attacks on NTLM Authentication
When it comes to cyberattacks, March has come in like a lion for Microsoft. Last week, Microsoft said in an SEC filing that that information stolen in a hack of senior leaders’ ...
ScreenConnect Authentication Bypass (CVE-2024-1709 & CVE-2024-1708)
Uncover critical security flaws in ConnectWise ScreenConnect (CVE-2024-1709 & CVE-2024-1708) posing remote code execution risks. Actively exploited in the wild. The post ScreenConnect Authentication Bypass (CVE-2024-1709 & CVE-2024-1708) appeared first on Indusface ...
Ordr Security Bulletin – Volt Typhoon State-Sponsored Cyber Actor
Authors: Pandian G, Gowri Sunder Ravi, Srinivas Loke Summary of Advisory from FBI/CISA Actors with malicious intentions, particularly the People’s Republic of China-backed Volt Typhoon group, are manipulating small office/home office (SOHO) ...
FBI Issues Ominous Warning of Imminent Cyber Attack on Critical Infrastructure
In testimony before the House Select Committee on the Chinese Communist Party yesterday, FBI Director Christopher Wray delivered an ominous message: “China’s hackers are positioning on American infrastructure in preparation to wreak ...
Critical Apache OFBiz Zero-day AuthBiz (CVE-2023-49070 and CVE-2023-51467)
Cybersecurity researchers recently uncovered a critical flaw in the widely used Apache OFBiz Enterprise Resource Planning (ERP) system, CVE-2023-51467. The zero-day vulnerability CVE-2023-51467 poses a significant threat, boasting a CVSS. The post ...
Apache Struts 2 Vulnerability CVE-2023-50164 Exposed
The latest vulnerability CVE-2023-50164 disclosed on Apache Struts affects the Struts 2 framework's file upload logic, allowing unauthorized path traversal. The post Apache Struts 2 Vulnerability CVE-2023-50164 Exposed appeared first on Indusface ...
Understanding the Zimbra Cross-Site Scripting Flaw (CVE-2023-37580)
The Zimbra XSS vulnerability allows an attacker to impact the confidentiality and integrity of the user's data. Understand how to find & fix this flaw. The post Understanding the Zimbra Cross-Site Scripting ...
HTTP/2 Rapid Reset Attack Vulnerability
Rapid Reset Attack vulnerability enables remote attackers to spike CPU usage, potentially causing DoS. Understand how to find & fix this flaw. The post HTTP/2 Rapid Reset Attack Vulnerability appeared first on ...
High-Stakes Identity Impersonation: Lessons From the MGM Attack
MGM Resorts recently found itself in the midst of a major cybersecurity incident that not only crippled its operations but also exposed sensitive customer data. The sophisticated attack orchestrated by a group ...
Remote Unauthenticated API Access Vulnerabilities in Ivanti
The API vulnerabilities in Ivanti CVE-2023-35078, and CVE-2023-35082, are rated 10 on CVSS. Explore their characteristics and mitigation measures. The post Remote Unauthenticated API Access Vulnerabilities in Ivanti appeared first on Indusface ...