News

Latest news on the subject of B2B cyber security >>> PR agencies: Add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

Tag: warning

BSI: Critical 9.3 vulnerability in PaloAlto Networks Expedition
12 January 2025
| No comments
| Short news
B2B Cyber ​​Security ShortNews

The BSI warns urgently about a critical vulnerability in the next-generation firewall (NGFW) platform PaloAlto Networks Expedition with a CVSS score of 9.3 out of 10. PaloAlto itself only rates the threat as 7.8 and as highly dangerous. The BSI writes in its warning about the next-generation firewall (NGFW) platform "PaloAlto Networks Expedition" with a critical CVSS score of 9.3: "A remote, anonymous attacker can exploit several vulnerabilities in PaloAlto Networks Expedition to manipulate data, disclose information, conduct a cross-site scripting attack, or execute commands." PaloAltoNetworks provides security advisory On January 8, 2025, Palo Alto Networks published a security warning...

Read more

BSI: Brute-force attacks against Citrix Netscaler Gateways
13 December 2024
| No comments
| Short news
B2B Cyber ​​Security ShortNews

The BSI is currently receiving an increasing number of reports of brute force attacks against Citrix Netscaler gateways from various KRITIS sectors and from international partners. The current attacks currently stand out from the usual attacks of this type only in the number of attacks reported. In brute force attacks, attackers try to guess weak username-password combinations with a massive number of login attempts. After attackers have successfully gained access, they usually try to consolidate access, e.g. via backdoors, and then compromise other internal systems. This can lead to data leakage and even complete encryption with ransomware. It is not just Citrix gateways in…

Read more

Analysis of BSI-listed APT group Earth Estries
10 December 2024
| No comments
| PR News
Analysis of BSI listed APT group Earth Estries Image: Bing - AI

The APT group Earth Estries, also known as Salt Typhoon, FamousSparrow, GhostEmperor and UNC2286, which is listed by the BSI as active in Germany, has been analyzed in detail by Trend Micro. The group aggressively targets critical industries around the world in order to spy on them. Since 2023, Earth Estries has developed into one of the most aggressive Chinese advanced persistent threat (APT) groups, primarily targeting critical industries such as telecommunications companies and government agencies in the US, Asia-Pacific, the Middle East and South Africa. But the German BSI is now also warning about the group, as it has already been active in…

Read more

Microsoft SharePoint vulnerability allows remote code
30 October 2024
| No comments
| Short news
B2B Cyber ​​Security ShortNews

The top American cyber security agency CISA has added a new vulnerability to its catalog of known exploited vulnerabilities: Microsoft SharePoint allows remote code execution and this is already being actively exploited. The American CISA is now known for its somewhat blunt statements when it comes to actively exploited security vulnerabilities, because there is no time to lose in drawing attention to them and calling on companies to patch the vulnerability. The current vulnerability for Microsoft is CVE-2024-38094 Security vulnerability in Microsoft SharePoint "Deserialization of untrusted data". The vulnerability has a CVSS 3.1 value of 7.2 and is therefore considered "Highly Dangerous"...

Read more

CISA: Safety instructions for 21 industrial control systems
18 October 2024
| No comments
| Short news
B2B Cyber ​​Security ShortNews

The CISA has published 21 security notices on the subject of Industrial Control Systems (ICS). The top US IT security authority lists all ICS components and the vulnerabilities identified and their CVSS values. There are also critical gaps. The current notices from the CISA - Cybersecurity and Infrastructure Security Agency, the top US IT security authority, are quite something. The list contains 21 warnings about vulnerable industrial control systems. They are all IIoT systems from the manufacturers Siemens, Schneider Electric, Rockwell Automation and Delta Elektronik. Each product is presented on a separate page. Here...

Read more

Microsoft sends customers warning email that looks like spam
July 16, 2024
| No comments
| Short news
B2B Cyber ​​Security ShortNews

After the attack by Midnight Blizzard in January, Microsoft warned its customers in June by sending an explanatory email. It's just unfortunate that such an important message ends up in spam, as Microsoft apparently sent it without email authentication such as SPF or DKIM. Security experts are raising the alarm in many channels. Microsoft was attacked by Midnight Blizzard on January 12, 2024. The Russian-sponsored actors apparently had access to email accounts of high-ranking employees. However, the attackers are said to have had no access to the customer environments. Microsoft had dealt with the attack and informed many customers in June...

Read more

BSI warns: Another critical vulnerability in MOVEit FTP module
July 1, 2024
| No comments
| PR News
BSI warns: Another critical vulnerability in MOVEit FTP module Image: MS - KI

MOVEit hit the headlines in 2023 due to serious security vulnerabilities, especially in the FTP module. The Cl0p group exploited the vulnerability and immediately attacked many companies. Now there is another critical vulnerability with a CVSS value of 9.1 out of 10, and there are already active attacks again. For many companies that use MOVEit, it is like déjà vu: just last year, several vulnerabilities led to attacks by the Cl0p group. A lot of data was stolen and offered for sale online. Now the BSI is warning again about a new vulnerability in the SFTP module...

Read more

BSI: Thousands of MS Exchange servers with critical vulnerabilities
2 April 2024
| No comments
| PR News
BSI: Thousands of MS Exchange servers with critical vulnerabilities - Ki - Bing

The BSI – Federal Office for Information Security – has warned several times in the past about vulnerabilities in Exchange and recommended that the security updates provided be installed promptly. But old systems are still not patched and a new vulnerability has already been published. There are currently around 45.000 Microsoft Exchange servers in Germany operating with Outlook Web Access (OWA) that can be accessed openly from the Internet. According to the BSI's findings, around 12% of these are still running Exchange 2010 or 2013. Security updates have no longer been available for these versions since October 2020 or April 2023...

Read more

Critical security vulnerabilities in VMware
March 10, 2024
| No comments
| Short news
B2B Cyber ​​Security ShortNews

Security vulnerabilities have been discovered in some VMware products. The BSI classifies these vulnerabilities as critical. Among other things, the USB controllers in various devices are affected. A local attacker can exploit multiple vulnerabilities in VMware ESXi, VMware Workstation, VMware Fusion and VMware Cloud Foundation to execute arbitrary code, bypass security measures or disclose information, warns the BSI and recommends using updates as they become available. CVSS vulnerability scores range from 7,1 to 9,3. They are all classified as critical because they allow attackers to bypass virtual machines and access the…

Read more

BSI warns: Citrix ADC with critical 9.8 vulnerability
July 21, 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

The BSI - Federal Office for Information Security - reports an active exploitation of a vulnerability in the Citrix Application Delivery Controller (ADC). The vulnerability managed with the CVE-2023-3519 has a CVSS value of 9.8 out of 10 and is critical! An update is available. On 18.07.2023/2023/3519 the manufacturer Citrix announced a critical vulnerability in the products NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway). The vulnerability is listed under the number CVE-9.8-XNUMX according to Common Vulnerabilities and Exposures (CVE) and has a score of XNUMX according to CVSS.

Read more

© 2025 MedPressIT Selinger
Cookie Settings