Researchers Warn of Linux Kernel ‘Dirty Pipe’ Arbitrary File Overwrite Vulnerability

Researchers Warn of Linux Kernel ‘Dirty Pipe’ Arbitrary File Overwrite Vulnerability,

Linux distributions are in the process of issuing patches to address a newly disclosed security vulnerability in the kernel that could allow an attacker to overwrite arbitrary data into any read-only files and allow for a complete takeover of affected systems.
Dubbed « Dirty Pipe » (CVE-2022-0847, CVSS score: 7.8) by IONOS software developer Max Kellermann, the flaw « leads to privilege escalation

,

Linux distributions are in the process of issuing patches to address a newly disclosed security vulnerability in the kernel that could allow an attacker to overwrite arbitrary data into any read-only files and allow for a complete takeover of affected systems.
Dubbed « Dirty Pipe » (CVE-2022-0847, CVSS score: 7.8) by IONOS software developer Max Kellermann, the flaw « leads to privilege escalation

, ,
https://thehackernews.com/2022/03/researchers-warn-of-linux-kernel-dirty.html

Microsoft Azure ‘AutoWarp’ Bug Could Have Let Attackers Access Customers’ Accounts

Microsoft Azure ‘AutoWarp’ Bug Could Have Let Attackers Access Customers’ Accounts

,

Details have been disclosed about a now-addressed critical vulnerability in Microsoft’s Azure Automation service that could have permitted unauthorized access to other Azure customer accounts and take over control.
« This attack could mean full control over resources and data belonging to the targeted account, depending on the permissions assigned by the customer, » Orca Security researcher Yanir

,

Details have been disclosed about a now-addressed critical vulnerability in Microsoft’s Azure Automation service that could have permitted unauthorized access to other Azure customer accounts and take over control.
« This attack could mean full control over resources and data belonging to the targeted account, depending on the permissions assigned by the customer, » Orca Security researcher Yanir

, ,
https://thehackernews.com/2022/03/microsoft-azure-autowarp-bug-could-have.html

Critical Bugs in TerraMaster TOS Could Open NAS Devices to Remote Hacking

Critical Bugs in TerraMaster TOS Could Open NAS Devices to Remote Hacking,

Researchers have disclosed details of critical security vulnerabilities in TerraMaster network-attached storage (TNAS) devices that could be chained to attain unauthenticated remote code execution with the highest privileges.
The issues reside in TOS, an abbreviation for TerraMaster Operating System, and « can grant unauthenticated attackers access to the victim’s box simply by knowing the IP

,

Researchers have disclosed details of critical security vulnerabilities in TerraMaster network-attached storage (TNAS) devices that could be chained to attain unauthenticated remote code execution with the highest privileges.
The issues reside in TOS, an abbreviation for TerraMaster Operating System, and « can grant unauthenticated attackers access to the victim’s box simply by knowing the IP

, ,
https://thehackernews.com/2022/03/critical-bugs-in-terramaster-tos-could.html

Understanding How Hackers Recon

Understanding How Hackers Recon,

Cyber-attacks keep increasing and evolving but, regardless of the degree of complexity used by hackers to gain access, get a foothold, cloak their malware, execute their payload or exfiltrate data, their attack will begin with reconnaissance. They will do their utmost to uncover exposed assets and probe their target’s attack surface for gaps that can be used as entry points.
So, the first line

,

Cyber-attacks keep increasing and evolving but, regardless of the degree of complexity used by hackers to gain access, get a foothold, cloak their malware, execute their payload or exfiltrate data, their attack will begin with reconnaissance. They will do their utmost to uncover exposed assets and probe their target’s attack surface for gaps that can be used as entry points.
So, the first line

, ,
https://thehackernews.com/2022/03/understanding-how-hackers-recon.html

Ukrainian CERT Warns Citizens of Phishing Attacks Using Compromised Accounts

Ukrainian CERT Warns Citizens of Phishing Attacks Using Compromised Accounts,

Ukraine’s Computer Emergency Response Team (CERT-UA) warned of new phishing attacks aimed at its citizens by leveraging compromised email accounts belonging to three different Indian entities with the goal of compromising their inboxes and stealing sensitive information.
The agency cautioned that the emails arrive with the subject line « Увага » (meaning « Attention ») and claim to be from a

,

Ukraine’s Computer Emergency Response Team (CERT-UA) warned of new phishing attacks aimed at its citizens by leveraging compromised email accounts belonging to three different Indian entities with the goal of compromising their inboxes and stealing sensitive information.
The agency cautioned that the emails arrive with the subject line « Увага » (meaning « Attention ») and claim to be from a

, ,
https://thehackernews.com/2022/03/ukrainian-cert-warns-citizens-of.html

Un cheval de Troie a été découvert sur le Play Store… dans une application antivirus

Un cheval de Troie a été découvert sur le Play Store… dans une application antivirus,

Le malware SharkBot de l’application Antivirus Super Cleaner peut voler vos identifiants bancaires et effectuer des transferts d’argent à votre place.

,

Le malware SharkBot de l’application Antivirus Super Cleaner peut voler vos identifiants bancaires et effectuer des transferts d’argent à votre place.

, ,
https://www.01net.com/actualites/un-cheval-de-troie-a-ete-decouvert-sur-le-play-store-dans-une-application-antivirus-2055374.html

Mozilla corrige deux failles zero-day dans Firefox, il est urgent de mettre à jour le navigateur

Mozilla corrige deux failles zero-day dans Firefox, il est urgent de mettre à jour le navigateur,

Ces failles critiques permettent d’exécuter du code arbitraire et sont d’ores et déjà utilisées de manière active par des pirates.

,

Ces failles critiques permettent d’exécuter du code arbitraire et sont d’ores et déjà utilisées de manière active par des pirates.

, ,
https://www.01net.com/actualites/mozilla-corrige-deux-failles-zero-day-dans-firefox-il-est-urgent-de-mettre-a-jour-le-navigateur-2055364.html

SharkBot Banking Malware Spreading via Fake Android Antivirus App on Google Play Store

SharkBot Banking Malware Spreading via Fake Android Antivirus App on Google Play Store,

The threat actor behind a nascent Android banking trojan named SharkBot has managed to evade Google Play Store security barriers by masquerading as an antivirus app.
SharkBot, like its malware counterparts TeaBot, FluBot, and Oscorp (UBEL), belongs to a category of financial trojans capable of siphoning credentials to initiate money transfers from compromised devices by circumventing

,

The threat actor behind a nascent Android banking trojan named SharkBot has managed to evade Google Play Store security barriers by masquerading as an antivirus app.
SharkBot, like its malware counterparts TeaBot, FluBot, and Oscorp (UBEL), belongs to a category of financial trojans capable of siphoning credentials to initiate money transfers from compromised devices by circumventing

, ,
https://thehackernews.com/2022/03/sharkbot-banking-malware-spreading-via.html

Des hackers ont piraté des organismes de recherche spatiale russes

Des hackers ont piraté des organismes de recherche spatiale russes,

Des pirates ont défacé un site Web de l’Institut de recherche spatiale, et publié des documents de l’agence spatiale Roscosmos.

,

Des pirates ont défacé un site Web de l’Institut de recherche spatiale, et publié des documents de l’agence spatiale Roscosmos.

, ,
https://www.01net.com/actualites/des-hackers-ont-pirate-des-organismes-de-recherche-spatiale-russes-2055332.html

2 New Mozilla Firefox 0-Day Bugs Under Active Attack — Patch Your Browser ASAP!

2 New Mozilla Firefox 0-Day Bugs Under Active Attack — Patch Your Browser ASAP!,

Mozilla has pushed out-of-band software updates to its Firefox web browser to contain two high-impact security vulnerabilities, both of which it says are being actively exploited in the wild.
Tracked as CVE-2022-26485 and CVE-2022-26486, the zero-day flaws have been described as use-after-free issues impacting the Extensible Stylesheet Language Transformations (XSLT) parameter processing and the

,

Mozilla has pushed out-of-band software updates to its Firefox web browser to contain two high-impact security vulnerabilities, both of which it says are being actively exploited in the wild.
Tracked as CVE-2022-26485 and CVE-2022-26486, the zero-day flaws have been described as use-after-free issues impacting the Extensible Stylesheet Language Transformations (XSLT) parameter processing and the

, ,
https://thehackernews.com/2022/03/2-new-mozilla-firefox-0-day-bugs-under.html