News

Latest news on the subject of B2B cyber security >>> PR agencies: Add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

BSI warns: Another critical vulnerability in MOVEit FTP module
BSI warns: Another critical vulnerability in MOVEit FTP module Image: MS - KI

MOVEit hit the headlines in 2023 due to serious security vulnerabilities, especially in the FTP module. The Cl0p group exploited the vulnerability and immediately attacked many companies. Now there is another critical vulnerability with a CVSS value of 9.1 out of 10, and there are already active attacks again. For many companies that use MOVEit, it is like déjà vu: just last year, several vulnerabilities led to attacks by the Cl0p group. A lot of data was stolen and offered for sale online. Now the BSI is warning again about a new vulnerability in the SFTP module...

Read more

Vulnerabilities in Check Point Security Gateways attacked
B2B Cyber ​​Security ShortNews

According to the BSI, the published vulnerabilities in Check Point security gateways are currently being attacked. The BSI does not rule out the possibility of data leakage. Check Point is already offering hotfixes. On May 26, 2024, Check Point published a high-priority advisory. In it, the manufacturer pointed out a newly discovered vulnerability in the Quantum and Maestro product lines that allows attackers to read information from these security gateways - especially credentials or VPN access data - remotely and without authentication. Be sure to run hotfixes -...

Read more

BSI and Zero Day Initiative warn of critical Azure vulnerability  
B2B Cyber ​​Security ShortNews

The Zero Day Initiative (ZDI) collects and verifies reported vulnerabilities. Now there is probably a critical vulnerability in Azure with the highest CVSS value of 10.0. The BSI also warns about the vulnerability - but there still doesn't seem to be a patch for it. The details of the critical vulnerability in Azure with CVSS value 10.0 are only briefly described: “This vulnerability allows remote attackers to bypass authentication with Microsoft Azure. No authentication is required to exploit this vulnerability.” Azure at risk – no patch to be found A further explanation can be found…

Read more

Fluent Bit: Attacking cloud services via logging endpoints
B2B Cyber ​​Security ShortNews

Tenable Research has discovered a critical vulnerability called “Linguistic Lumberjack” in Fluent Bit, a core component of the monitoring infrastructure of many cloud services, which could allow denial-of-service attacks, information disclosure, or remote code execution. Fluent Bit is a lightweight, open-source data collector and processor that can process large amounts of log data from various sources. It is designed to be highly scalable and easy to use, making it an ideal choice for log collection and processing in cloud-based environments. The project boasts over 2022 billion downloads by 3 and will continue to be…

Read more

Researcher: Cracked Cisco appliance and installed Doom on it 
B2B Cyber ​​Security ShortNews

Security researcher Aaron Thacker actually just wanted to build a server out of a Cisco appliance. He discovered a vulnerability in the web-based management interface of the Cisco Integrated Management Controller. He then installed Doom and played it as a demo in the management console. Security researcher Aaron Thacker only managed to hack a Cisco C195 Email Security Appliance, but the vulnerability affects a whole range of Cisco devices. Thacker just wanted to build a server out of the appliance and discovered the vulnerability during the conversion. He then started a chain of attacks: He changed the BIOS,…

Read more

Lancom LCOS with root password vulnerability 
B2B Cyber ​​Security ShortNews

Lancom and the BSI report a configuration bug for the LCOS operating system: A vulnerability with the CVSS value of 6.8 can enable the acquisition of administrator rights. An update is available. The messages on the Lancom website and on the BSI website are not entirely compliant. Both report a vulnerability from LCOS version 10.80 RU1 onwards, but while Lancom sees no danger: “Unauthorized access to the router via the WAN (Internet) is not possible due to this security gap”, the BSI uses the note in its heading: “ Vulnerability allows Erlangen…

Read more

XenServer and Citrix Hypervisor vulnerabilities
B2B Cyber ​​Security ShortNews

Citrix warns of two vulnerabilities in XenServer and Citrix Hypervisor. The security vulnerabilities are only moderately serious, but a quick update is still recommended. Citrix already provides hotfixes for this. According to Citrix, two issues have been identified affecting XenServer and Citrix Hypervisor. A vulnerability could allow unprivileged code in a guest VM to access the memory contents of its own VM or other VMs on the same host. This can result in data or access data being stolen. Memory contents of other VMs can be copied Citrix presents the issues under the following CVE identifiers: CVE-2024-2201 and CVE-2024-31142. However…

Read more

Holy LG WebOS endangers presentation TVs in companies 
Bitdefender_News

Many companies now have large TV sets in conference rooms for events or video conferences. The problem with security gaps in LG WebOS shows that this can unexpectedly introduce vulnerabilities behind the firewall. The experts at Bitdefender Labs have discovered vulnerabilities in LG WebOS and informed the manufacturer. The gaps, which had already been closed with a push patch from LG, allowed hackers to add new users, gain root access and thus compromise the entire smart home network. Users are encouraged to check whether LG WebOS on their LG TVs is in the updated version as of March 22, 2024….

Read more

BSI warns: Palo Alto firewalls with critical vulnerability 
B2B Cyber ​​Security ShortNews

The BSI warns: The PAN-OS operating system has a glaring, critical vulnerability that was rated with a CVSS value of 10.0 out of 10. Companies should act immediately and apply upcoming patches or use the available workarounds. According to BSI - the Federal Office for Information Security, on April 12, 2024, the company Palo Alto Networks published an advisory about an actively exploited vulnerability in PAN-OS, the operating system of the manufacturer's firewalls. The vulnerability with the identifier CVE-2024-3400 is an OS command injection in the GlobalProtect Gateway feature, which allows an unauthenticated…

Read more

FortiOS and FortiProxy with a highly dangerous vulnerability
B2B Cyber ​​Security ShortNews

Fortinet reports a vulnerability with a CVSS score of 7.5 for FortiOS and FortiProxy and is therefore considered highly dangerous. Attackers could retrieve the administrator cookie and thus gain unauthorized access. Various updates are available from Fortinet. Fortinet describes the security notification for the high-risk vulnerability with CVSS score 7.5 as follows: “A vulnerability with insufficiently protected credentials in FortiOS and FortiProxy could, in rare and specific cases, allow an attacker to obtain the administrator cookie by convincing the administrator to do so to visit a website controlled by malicious attackers via SSL VPN.” In this way…

Read more