The Information Highway

The Information Highway

exploitation

Oracle WebLogic Server vulnerability

Wednesday, 05 June 2024

LBT Technology Group, LLC.

Security

Threat-Advisory-Banner3

Threat update

There has been active exploitation of a critical operating system (OS) command injection vulnerability, known as CVE-2017-3506, found in the Oracle WebLogic Server. The impact can be severe, ranging from financial loss to reputational damage.

Continue reading

782 Hits

0 Comments

Tags:

move block exploitation command injection vulnerability CVE -2017-3506

Norway recommends replacing SSL VPN to prevent breaches

Thursday, 16 May 2024

Security Compliance News

global-pew-pe_20240519-183959_1

The Norwegian National Cyber Security Centre (NCSC) recommends replacing SSLVPN/WebVPN solutions with alternatives due to the repeated exploitation of related vulnerabilities in edge network devices to breach corporate networks.

Continue reading

973 Hits

0 Comments

Tags:

exploitation alternatives SSLVPN /WebVPN solutions NCSC Norwegian National Cyber Security Centre

Palo Alto Networks warns of PAN-OS firewall zero-day used in attacks

Saturday, 13 April 2024

Security

Palo_Alto_Networks

Today, Palo Alto Networks warns that an unpatched critical command injection vulnerability in its PAN-OS firewall is being actively exploited in attacks.

Continue reading

1260 Hits

0 Comments

Tags:

Palo Alto Networks command injection vulnerability PAN-OS firewall attacks exploitation

Blog Categories
Security 453 post(s) News 315 post(s) Technology 153 post(s) Compliance 27 post(s) Cloud Computing 10 post(s) Uncategorized 1 post(s) Business Continuity & Disaster Recovery 1 post(s)

You May Also Like

Christie's starts notifying clients of RansomHub data breach

British auction house Christie's is notifying individuals whose data was stolen by the RansomHub ran...

New Linux malware is controlled through emojis sent from Discord

A newly discovered Linux malware dubbed 'DISGOMOJI' uses the novel approach of utilizing emojis to e...

Cisco warns of VPN zero-day exploited by ransomware gangs

Cisco is warning of a CVE-2023-20269 zero-day vulnerability in its Cisco Adaptive Security Appliance...

3CX warns customers to disable SQL database integrations

VoIP communications company 3CX warned customers today to disable SQL database integrations du...

Ohio Lottery ransomware attack impacts over 538,000 individuals

The Ohio Lottery is sending data breach notification letters to over 538,000 individuals affected by...

Blog Archive

Recent Comments
No comments yet.

Recent Blogs

08 December 2024

QR codes bypass browser isolation for malicious C2 communication

06 December 2024

Microsoft expands Recall preview to Intel and AMD Copilot+ PCs

04 December 2024

Microsoft says having a TPM is "non-negotiable" for Windows 11

04 December 2024

FBI shares tips on how to tackle AI-powered fraud schemes

04 December 2024

BT unit took servers offline after Black Basta ransomware breach

Tag Cloud

Top Breaches Cost ($) of 2024

HEALTHCARE

FINANCIAL

INDUSTRIAL

TECHNOLOGY

ENERGY

Source: IBM Cost of a Data Breach Report 2024