Multiple high-severity flaws have been uncovered in the open source OpenLiteSpeed Web Server as well as its enterprise variant that could be weaponized to achieve remote code execution. “By chaining and exploiting the vulnerabilities, adversaries could compromise the web server and gain fully privileged remote code execution,” Palo Alto Networks Unit 42 said in a Thursday report.
Cyber News, Cyber Threat TrendsDigital Shadows warns of elevated risk from scammers and threat actors
Cyber News, Cyber Threat Trends
Microsoft on Thursday attributed the recent spate of ransomware incidents targeting transportation and logistics sectors in Ukraine and Poland to a threat cluster that shares overlaps with the Russian state-sponsored Sandworm group. The attacks, which were disclosed by the tech giant last month, involved a strain of previously undocumented malware called Prestige and is said to have taken […]
Cyber News, Cyber Threat Trends
This blog entry details our investigation of CVE-2019-8561, a vulnerability that exists in the macOS PackageKit framework, a component used to install software installer packages (PKG files).
Cyber News, Cyber Threat Trends
Cloud security vendor Lacework this week announced the availability of a cloud-native application protection platform (CNAPP) for its broader Polygraph Data Platform offering, providing an agentless, low-touch option for organizations looking to improve their application security posture. There are two main components to the CNAPP release, according to Lacework, both of which require only that […]
Cyber News, Cyber Threat Trends
Patches, busts, leaks and why even low-likelihood exploits can be high-severity risks – listen now!
Cyber News, Cyber Threat Trends
A nonprofit organization is suing the state of Massachusetts on behalf of thousands of low-income families who were collectively robbed of more than a $1 million in food assistance benefits by card skimming devices secretly installed at cash machines and grocery store checkout lanes across the state. Federal law bars states from replacing these benefits […]
Cyber News, Cyber Threat TrendsIreland’s National Cyber Crime Bureau outlines cybercrime trends being observed in law enforcement
Cyber News, Cyber Threat TrendsThe flaws affect various Lenovo Yoga, IdeaPad and ThinkBook devices
Cyber News, Cyber Threat Trends