The Information Highway

The Information Highway

all things technology risk and cybersecurity

Critical Veeam RCE bug now used in Frag ransomware attacks

Veeam

After being used in Akira and Fog ransomware attacks, a critical Veeam Backup & Replication (VBR) security flaw was also recently exploited to deploy Frag ransomware.

Continue reading
  40 Hits

D-Link won’t fix critical flaw affecting 60,000 older NAS devices

D-Link-headpic

More than 60,000 D-Link network-attached storage devices that have reached end-of-life are vulnerable to a command injection vulnerability with a publicly available exploit.

Continue reading
  65 Hits

Unpatched Mazda Connect bugs let hackers install persistent malware

headpi_20241109-194606_1

Attackers could exploit several vulnerabilities in the Mazda Connect infotainment unit, present in multiple car models including Mazda 3 (2014-2021), to execute arbitrary code with root permission. 

Continue reading
  58 Hits

Palo Alto Networks warns of potential PAN-OS RCE vulnerability

Palo-Alto-Networks

 Today, cybersecurity company Palo Alto Networks warned customers to restrict access to their next-generation firewalls because of a potential remote code execution vulnerability in the PAN-OS management interface.

Continue reading
  50 Hits

Vulnerabilities found in Microsoft Azure AI

Threat-Advisory-Banner3

Threat update

Significant vulnerabilities in Microsoft's Azure AI Content Safety services have been discovered. These vulnerabilities enable attackers to bypass safeguards and deploy harmful AI-generated content.

Continue reading
  67 Hits

Zero-click flaw in Synology NAS devices

Threat-Advisory-Banner3

Threat update

Synology, network-attached storage (NAS) maker, addressed critical security vulnerability, CVE-2024-10443, which impacts their DiskStation and BeePhotos applications. This is an unauthenticated vulnerability that can allow attackers to obtain root-level code execution on Synology NAS devices.

Continue reading
  39 Hits

Google's mysterious 'search.app' links leave Android users concerned

Google_headpi_20241109-201732_1

Google has left Android users puzzled after the most recent update to the Google mobile app causes links shared from the app to now be prepended with a mysterious "search.app" domain.

Continue reading
  24 Hits

Malicious PyPI Package 'Fabrice' Found Stealing AWS Keys from Thousands of Developers

aw_20241109-185929_1

Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) that has racked up thousands of downloads for over three years while stealthily exfiltrating developers' Amazon Web Services (AWS) credentials.

Continue reading
  55 Hits

HPE warns of critical RCE flaws in Aruba Networking access points

HPE

Hewlett Packard Enterprise (HPE) released updates for Instant AOS-8 and AOS-10 software to address two critical vulnerabilities in Aruba Networking Access Points.. 

Continue reading
  43 Hits

Google Cloud to Enforce Multi-Factor Authentication by 2025 for All Users

clou_20241109-185203_1

Google's cloud division has announced that it will enforce mandatory multi-factor authentication (MFA) for all users by the end of 2025 as part of its efforts to improve account security.

Continue reading
  57 Hits

Vulnerabilities found in Microsoft Azure AI

Threat-Advisory-Banner3

Threat update

Significant vulnerabilities in Microsoft's Azure AI Content Safety services have been discovered. These vulnerabilities enable attackers to bypass safeguards and deploy harmful AI-generated content. Continue reading this Cybersecurity Threat Advisory to learn the implications of these flaws and which security measures to implement to protect your organization.

Continue reading
  51 Hits

CRON#TRAP phishing campaign

Threat-Advisory-Banner3

Threat update

A new phishing campaign, identified as CRON#TRAP, are targeting Windows systems with a preloaded Linux virtual machine (VM) to evade detection to conduct malicious acts. Continue reading this Cybersecurity Threat Advisory to learn how to protect against this phishing campaign. 

Continue reading
  66 Hits

Windows infected with backdoored Linux VMs in new phishing attacks

Linux

A new phishing campaign dubbed 'CRON#TRAP' infects Windows with a Linux virtual machine that contains a built-in backdoor to give stealthy access to corporate networks.

Continue reading
  46 Hits

Microsoft SharePoint RCE bug exploited to breach corporate network

SharePoint

A recently disclosed Microsoft SharePoint remote code execution (RCE) vulnerability tracked as CVE-2024-38094 is being exploited to gain initial access to corporate networks.

Continue reading
  57 Hits

LA housing authority confirms breach claimed by Cactus ransomware

HACLA_headpic

The Housing Authority of the City of Los Angeles (HACLA), one of the largest public housing authorities in the United States, confirmed that a cyberattack hit its IT network after recent breach claims from the Cactus ransomware gang.

Continue reading
  86 Hits

OpenAI's new ChatGPT Search Chrome extension feels like a search hijacker

ChatGPT

OpenAI's new "ChatGPT search" Chrome extension feels like nothing more than a typical search hijacker, changing Chrome's settings so your address bar searches go through ChatGPT Search instead.

Continue reading
  68 Hits

LastPass warns of fake support centers trying to steal customer data

LastPass-headpic

LastPass is warning about an ongoing campaign where scammers are writing reviews for its Chrome extension to promote a fake customer support phone number. However, this phone number is part of a much larger campaign to trick callers into giving scammers remote access to their computers.

Continue reading
  75 Hits

Synology hurries out patches for zero-days exploited at Pwn2Own

Synology

Synology, a Taiwanese network-attached storage (NAS) appliance maker, patched two critical zero-days exploited during last week's Pwn2Own hacking competition within days.

Continue reading
  43 Hits

Sophos reveals 5-year battle with Chinese hackers attacking network devices

Chinese_hackers

Sophos disclosed today a series of reports dubbed "Pacific Rim" that detail how the cybersecurity company has been sparring with Chinese threat actors for over 5 years as they increasingly targeted networking devices worldwide, including those from Sophos.

Continue reading
  51 Hits

VMware critical vulnerability

Threat-Advisory-Banner3

Threat update

VMware has recently released software updates to address a security flaw believed to have already been patched in vCenter Server. The vulnerability, known as CVE-2024-38812 with a CVSS score of 9.8, is a heap-overflow vulnerability. Continue reading this Cybersecurity Threat Advisory to mitigate your risk.

Continue reading
  63 Hits

Top Breaches Of 2023

Customers Affected In T-Mobile Breach
Accounts Affected In MOVEit Breach
Customers Affected In MCNA Insurance Data Breach
Individuals Affected In PharMerica Data Breach
Users Affected In ChatGPT Major Data Breach
*Founder Shield End of Year 2023