Critical Ping Vulnerability Allows Remote Attackers to Take Over FreeBSD Systems

Critical Ping Vulnerability Allows Remote Attackers to Take Over FreeBSD Systems,

The maintainers of the FreeBSD operating system have released updates to remediate a security vulnerability impacting the ping module that could be potentially exploited to crash the program or trigger remote code execution.
The issue, assigned the identifier CVE-2022-23093, impacts all supported versions of FreeBSD and concerns a stack-based buffer overflow vulnerability in the ping service.
« 

,

The maintainers of the FreeBSD operating system have released updates to remediate a security vulnerability impacting the ping module that could be potentially exploited to crash the program or trigger remote code execution.
The issue, assigned the identifier CVE-2022-23093, impacts all supported versions of FreeBSD and concerns a stack-based buffer overflow vulnerability in the ping service.
« 

, ,
https://thehackernews.com/2022/12/critical-ping-vulnerability-allows.html

Attention, déjà 300 000 victimes d’applications volant les comptes Facebook

Attention, déjà 300 000 victimes d’applications volant les comptes Facebook,

play store android malware

Depuis 2018, une série de logiciels malveillants circulent sur Android, se faisant passer pour des applications éducatives légitimes. Ces malwares dérobent les identifiants de compte Facebook pour les réutiliser un peu partout sur le web.

,

play store android malware

Depuis 2018, une série de logiciels malveillants circulent sur Android, se faisant passer pour des applications éducatives légitimes. Ces malwares dérobent les identifiants de compte Facebook pour les réutiliser un peu partout sur le web.

, ,
https://www.01net.com/actualites/attention-deja-300-000-victimes-dapplications-volant-les-comptes-facebook.html

Google Rolls Out New Chrome Browser Update to Patch Yet Another Zero-Day Vulnerability

Google Rolls Out New Chrome Browser Update to Patch Yet Another Zero-Day Vulnerability,

Search giant Google on Friday released an out-of-band security update to fix a new actively exploited zero-day flaw in its Chrome web browser.
The high-severity flaw, tracked as CVE-2022-4262, concerns a type confusion bug in the V8 JavaScript engine. Clement Lecigne of Google’s Threat Analysis Group (TAG) has been credited with reporting the issue on November 29, 2022.
Type confusion

,

Search giant Google on Friday released an out-of-band security update to fix a new actively exploited zero-day flaw in its Chrome web browser.
The high-severity flaw, tracked as CVE-2022-4262, concerns a type confusion bug in the V8 JavaScript engine. Clement Lecigne of Google’s Threat Analysis Group (TAG) has been credited with reporting the issue on November 29, 2022.
Type confusion

, ,
https://thehackernews.com/2022/12/google-rolls-out-new-chrome-browser.html

Hackers Sign Android Malware Apps with Compromised Platform Certificates

Hackers Sign Android Malware Apps with Compromised Platform Certificates,

Platform certificates used by Android smartphone vendors like Samsung, LG, and MediaTek have been found to be abused to sign malicious apps.
The findings were first discovered and reported by Google reverse engineer Łukasz Siewierski on Thursday.
« A platform certificate is the application signing certificate used to sign the ‘android’ application on the system image, » a report filed through the

,

Platform certificates used by Android smartphone vendors like Samsung, LG, and MediaTek have been found to be abused to sign malicious apps.
The findings were first discovered and reported by Google reverse engineer Łukasz Siewierski on Thursday.
« A platform certificate is the application signing certificate used to sign the ‘android’ application on the system image, » a report filed through the

, ,
https://thehackernews.com/2022/12/hackers-sign-android-malware-apps-with.html

CISA Warns of Multiple Critical Vulnerabilities Affecting Mitsubishi Electric PLCs

CISA Warns of Multiple Critical Vulnerabilities Affecting Mitsubishi Electric PLCs,

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) this week released an Industrial Control Systems (ICS) advisory warning of multiple vulnerabilities in Mitsubishi Electric GX Works3 engineering software.
« Successful exploitation of these vulnerabilities could allow unauthorized users to gain access to the MELSEC iQ-R/F/L series CPU modules and the MELSEC iQ-R series OPC UA server

,

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) this week released an Industrial Control Systems (ICS) advisory warning of multiple vulnerabilities in Mitsubishi Electric GX Works3 engineering software.
« Successful exploitation of these vulnerabilities could allow unauthorized users to gain access to the MELSEC iQ-R/F/L series CPU modules and the MELSEC iQ-R series OPC UA server

, ,
https://thehackernews.com/2022/12/cisa-warns-of-multiple-critical.html

The Value of Old Systems

The Value of Old Systems,

Old technology solutions – every organization has a few of them tucked away somewhere. 
It could be an old and unsupported storage system or a tape library holding the still-functional backups from over 10 years ago. 
This is a common scenario with software too. For example, consider an accounting software suite that was extremely expensive when it was purchased. If the vendor eventually went

,

Old technology solutions – every organization has a few of them tucked away somewhere. 
It could be an old and unsupported storage system or a tape library holding the still-functional backups from over 10 years ago. 
This is a common scenario with software too. For example, consider an accounting software suite that was extremely expensive when it was purchased. If the vendor eventually went

, ,
https://thehackernews.com/2022/12/the-value-of-old-systems.html

Researchers Disclose Supply-Chain Flaw Affecting IBM Cloud Databases for PostgreSQL

Researchers Disclose Supply-Chain Flaw Affecting IBM Cloud Databases for PostgreSQL,

IBM has fixed a high-severity security vulnerability affecting its Cloud Databases (ICD) for PostgreSQL product that could be potentially exploited to tamper with internal repositories and run unauthorized code.
The privilege escalation flaw (CVSS score: 8.8), dubbed « Hell’s Keychain » by cloud security firm Wiz, has been described as a « first-of-its-kind supply-chain attack vector impacting a

,

IBM has fixed a high-severity security vulnerability affecting its Cloud Databases (ICD) for PostgreSQL product that could be potentially exploited to tamper with internal repositories and run unauthorized code.
The privilege escalation flaw (CVSS score: 8.8), dubbed « Hell’s Keychain » by cloud security firm Wiz, has been described as a « first-of-its-kind supply-chain attack vector impacting a

, ,
https://thehackernews.com/2022/12/researchers-disclose-supply-chain-flaw.html

Hackers Exploiting Redis Vulnerability to Deploy New Redigo Malware on Servers

Hackers Exploiting Redis Vulnerability to Deploy New Redigo Malware on Servers,

A previously undocumented Go-based malware is targeting Redis servers with the goal of taking control of the infected systems and likely building a botnet network.
The attacks involve taking advantage of a critical security vulnerability in the open source, in-memory, key-value store that was disclosed earlier this year to deploy Redigo, according to cloud security firm Aqua.

,

A previously undocumented Go-based malware is targeting Redis servers with the goal of taking control of the infected systems and likely building a botnet network.
The attacks involve taking advantage of a critical security vulnerability in the open source, in-memory, key-value store that was disclosed earlier this year to deploy Redigo, according to cloud security firm Aqua.

, ,
https://thehackernews.com/2022/12/hackers-exploiting-redis-vulnerability.html

Les smartphones de Samsung et LG sont menacés par des malwares à cause d’une fuite de certificats

Les smartphones de Samsung et LG sont menacés par des malwares à cause d’une fuite de certificats,

android malware brata

La fuite de plusieurs certificats de plate-forme Android appartenant à LG, Samsung et MediaTek peut permettre à des pirates de signer des applications malveillantes pour qu’elles soient acceptées par le système et disposent de privilèges élevés.

,

android malware brata

La fuite de plusieurs certificats de plate-forme Android appartenant à LG, Samsung et MediaTek peut permettre à des pirates de signer des applications malveillantes pour qu’elles soient acceptées par le système et disposent de privilèges élevés.

, ,
https://www.01net.com/actualites/les-smartphones-de-samsung-et-lg-sont-menaces-par-des-malwares-a-cause-dune-fuite-de-certificats.html

Cuba Ransomware Extorted Over $60 Million in Ransom Fees from More than 100 Entities

Cuba Ransomware Extorted Over $60 Million in Ransom Fees from More than 100 Entities,

The threat actors behind Cuba (aka COLDDRAW) ransomware have received more than $60 million in ransom payments and compromised over 100 entities across the world as of August 2022.
In a new advisory shared by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of…

,

The threat actors behind Cuba (aka COLDDRAW) ransomware have received more than $60 million in ransom payments and compromised over 100 entities across the world as of August 2022.
In a new advisory shared by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of…

, ,
https://thehackernews.com/2022/12/cuba-ransomware-extorted-over-60.html