Cybersecurity News
- Unauthenticated Stored XSS Vulnerability in LiteSpeed Cache Plugin Affecting 6+ Million Sites.
- WordPress LiteSpeed Cache Plugin Security Flaw Exposes Sites to XSS Attacks. The flaw, tracked as CVE-2024-47374 (CVSS score: 7.2).
- DrayTek has released patches for several models of its routers, addressing 14 vulnerabilities. One of them is rated as critical (10.0 on the CVSS scale) and allows remote execution of arbitrary code.
- CUPS vulnerabilities could put Linux systems at risk. The vulnerability can lead to the interception of a computer over a network or the Internet during a print job.
- A critical vulnerability in the NVIDIA Container Toolkit and GPU Operator allowed threat actors to access the underlying host’s file system, experts have warned.
- The US Cybersecurity and Infrastructure Security Agency (CISA) has warned Ivanti customers of active exploitation of a critical Endpoint Manager (EPM) vulnerability allowing remote code execution (RCE) that the company fixed in May 2024.
- A critical vulnerability has been discovered in the Zimbra open source collaboration package that allows attackers to run remote code execution on vulnerable servers and inject malware. The vulnerability is tracked as CVE-2024-45519.
- Mozilla was hit with a privacy complaint over Firefox user tracking. It is claimed that the Privacy-Preserving Attribution feature in Firefox is used to track people’s online behavior.
- HPE Aruba fixes critical security flaws in access points. The vulnerabilities allowed attackers to remotely execute malicious code.
- A critical flaw in Microchip ASF exposes IoT devices to remote code execution risk. The vulnerability, tracked as CVE-2024-7490, carries a CVSS score of 9.5 out of a maximum of 10.0.
Cybersecurity Blog Posts
- Mirko Zorz, Director of Content at Help Net Security, discussed the role of Threat Exposure Management (TEM) in modern cybersecurity strategies.
- Sam Sheriff, Senior Director and Head of the Middle East Division at HID, spoke about integrating mobile access with digital wallets and how it is changing our approach to security.
- Andrius Popovas, Chief Risk Officer at Mano Bank, discussed the most common AI-driven fraud schemes, including phishing attacks and deepfakes.
- Fahmida Rashid and John Leyden, authors at CSO Online, explained how to recognize nine types of phishing attacks.
- Robert Rea, Technical Director at Graylog, identified three main questions that every Chief Information Security Officer (CISO) should ask when using AI.
- Mark Laliberte, Director of Security Operations at WatchGuard Technologies, offered three tips on protecting IoT devices.
- Chris Crummy, Cybersecurity Director at Sygnia, advised on how to effectively prepare for a cyberattack.
Research and Analytics
- According to Cloudflare research, 69% of businesses in the UAE expect a cyberattack in a year, but only 49% are prepared for it.
- CybSafe and the National Cybersecurity Alliance (NCA) found that 38% of company employees secretly share work information with AI.
- According to the Red Canary’s report on security trends for 2024, security managers are struggling to cope with the growing number of attacks despite increased cybersecurity budgets.
- Verizon Business released its 17th annual data leak investigation report, which focuses on human involvement in cyberattacks.
- According to CheckPoint’s report, over the past year, 61% of organizations experienced at least one incident related to the use of public clouds.
- SpyCloud researchers found that information leaks have caused an increase in ransomware attacks.
- Mobile-targeted phishing attacks are on the rise, with more than four of five phishing sites targeting mobile devices.
Major Cyber Incidents
- Cloudflare blocks the largest recorded DDoS attack, peaking at 3.8 Tbps. The attack consisted of a “month-long” barrage of over 100 hypervolumetric DDoS attacks, flooding network infrastructure with garbage data.
- American peer-to-peer payment and money transfer company MoneyGram confirms that a cyberattack caused their service outage. The attack affected both in-person and online money transfer services.
- Detroit-area government services were impacted by a cyberattack, which shut down all government websites and limited the operations of several offices.
- MoneyGram confirms a cyberattack is behind the days-long outage, the extended outage and loss of connection to systems are indicative of a ransomware attack.
- Rackspace’s internal monitoring web servers were compromised by zero-day exploits. Intruders accessed machines via a tool bundled with ScienceLogic.
- Comcast and Truist Bank customers caught up in FBCS data breach.
- Dell suffers a second security incident hot on the heels of an employee data breach impacting 10,000 people.