Tag Archive: kwetsbaarheid

CYBER NEWS

Het 3 Most Popular TCP Ports at Fault for Most Attacks on SMBs

Small to mid-sized businesses (SMBs) are more targeted by cybercriminals than ever, according to a new AlertLogic report. Echter, there is a way for SMBs to be protected and it involves cushioning the ports that cyber attackers target the most.…

door Milena Dimitrova | September 17, 2019

0 Reacties

BlueKeep, port scanning, uitvoering van externe code, rapport 2019, SMB gegevensbeveiliging, TCP, kwetsbaarheid

CYBER NEWS

The Simjacker Attack – Silent Surveillance against Mobile Users

Simjacker is a new set of vulnerabilities that, onderzoekers zeggen, have been exploited for the purpose of surveillance for at least 2 jaar. The Simjacker vulnerabilities appear to be rather sophisticated and complex, in comparison with previously disclosed attacks over…

door Milena Dimitrova | September 16, 2019

0 Reacties

Android, Cyber aanval, iPhone, mobile network, Mobiele beveiliging, Simjacker, Toezicht, kwetsbaarheid

CYBER NEWS

Microsoft Patches CVE-2019-1214, CVE-2019-1215 Zero-Day Flaws

Two zero-day vulnerabilities were fixed in Microsoft’s September 2019 Patch Tuesday – CVE-2019-1214 and CVE-2019-1215. In totaal, 80 vulnerabilities were fixes of which 17 were listed as critical, and the rest – belangrijk. More about CVE-2019-1214 and CVE-2019-1215 Apparently, beide…

door Milena Dimitrova | September 12, 2019

0 Reacties

misbruik van bevoegdheden, Patch Tuesday, kwetsbaarheid, Zero-Day

CYBER NEWS

NetCAT Attack: Intel Server-Grade CPUs Exploited to Leak Sensitive Data

Cybersecurity researchers have outlined a new type of attack involving Intel server-grade processors since 2012. The attack is based on a vulnerability named NetCAT (Network Cache Attack). The vulnerability could allow sniffing data by mounting a side-channel attack over the…

door Milena Dimitrova | September 11, 2019

0 Reacties

NetCAT, zijkanaal aanval, nevenkanaalaanvallen, kwetsbaarheid

CYBER NEWS

Patch Gap in Chrome Could Have Been Weaponized by Attackers

Patch gapping is a serious issue that puts a system at risk of exploits. The problem stems from a gap in time before a patch of a security vulnerability in an open-source software is shipped to users. The vulnerability may…

door Milena Dimitrova | September 10, 2019

0 Reacties

Chrome, open source, patch gap, kwetsbaarheid

CYBER NEWS

1 Million Imperial & Dabman IoT Radio Devices Vulnerable to Attacks

Dangerous vulnerabilities were recently discovered in Telestar Digital GmbH IoT radio devices. The flaws could allow remote attackers to hijack vulnerable systems. The vulnerabilities were discovered by Vulnerability Laboratory. Some of them are already assigned CVE numbers – CVE-2019-13473 and…

door Milena Dimitrova | September 9, 2019

0 Reacties

ivd-apparaten, kwetsbaarheid, web radio device

CYBER NEWS

CVE-2019-13224, Other Critical Flaws in PHP – patch Now

The latest versions of PHP were recently released (PHP version 7.3.9, 7.2.22 en 7.1.32 across several branches) to address several highly critical vulnerabilities in its core and bundled libraries. The most dangerous of these vulnerabilities are the ones that could…

door Milena Dimitrova | September 9, 2019

0 Reacties

CVE-2019-13224, PHP, uitvoering van externe code, kwetsbaarheid

CYBER NEWS

Facebook Patches Critical Exploits in Its HHVM Server Software

Facebook has announced that they have updated their HHVM server software which removes the possibility of it to be exploited. The company announced that two critical bugs were fund in it. The vulnerabilities allow the hackers to obtain sensitive data…

door Martin Beltov | September 9, 2019

0 Reacties

facebook, Facebook bug, Facebook kwetsbaarheid, HHVM, kwetsbaarheid

CYBER NEWS

Onderzoekers Disclose Ongepatchte Android Zero-Day

Een nieuwe zero-day kwetsbaarheid is ontdekt in Android. Als uitgebuit, de zwakke plek zou een lokale aanvaller geven tot hogere privileges op de besmette apparaat. Volgens Zero Day Initiative onderzoekers TrendMicro's Lance Jiang en Moony Li, de fout zich bevindt…

door Milena Dimitrova | September 5, 2019

0 Reacties

Android Beveiliging, Android beveiligingsbulletin, Android kwetsbaarheden, kwetsbaarheid, Zero-Day

CYBER NEWS

Zerodium Uitbetaling voor Android Exploits Springt naar $ 2.5M, iOS Prijs Drops

Zerodium, een “leading exploit overname platform voor premium zero-dagen en geavanceerde cyberveiligheid onderzoek”, heeft haar prijslijst bijgewerkt. Blijkbaar, Android exploits zijn nu duurder dan iOS exploits, voor de eerste keer in de geschiedenis. Zerodium is nu veel meer betalen…

door Milena Dimitrova | September 4, 2019

0 Reacties

Android exploiteren keten, Android kwetsbaarheden, IOS benutten chain, iOS kwetsbaarheid, kwetsbaarheid, Zerodium

CYBER NEWS

Supermicro BMCs Expose bedrijfsnetwerken om Remote Attacks

Myriad zwakke plekken ontdekt in het zogenaamde basisbeheercontroller controllers (BMCs) Supermicro servers. De gebreken kunnen worden benut in afgelegen aanvallen en kan de toegang tot bedrijfsnetwerken verlenen. Eclypsium onderzoekers wel de kwetsbaarheden USBAnywhere. Beeld: Eclypsium USBAnywhere beveiligingslekken Explained…

door Milena Dimitrova | September 3, 2019

0 Reacties

basisbeheercontroller controller, Server, Supermicro servers, USBAnywhere, kwetsbaarheid

CYBER NEWS

Hackers gebruiken iOS Exploit Chains tegen iPhone-gebruikers

Verschillende privilegebreuk exploit ketens werden ontdekt in iOS-apparaten door Google's Threat Analysis Group (LABEL) en Project Zero teams. De kwetsbaarheden werden actief gebruikt door dreiging acteurs die ook gebruikt geïnfecteerde websites drinkplaats aanvallen uit te voeren…

door Milena Dimitrova | September 2, 2019

0 Reacties

veiligheid Apple, exploiteren, iOS, iPhone, kwetsbaarheid, watergat aanval

CYBER NEWS

Windows Users Be Warned, ‘Complete Hack’ Flaw Used in Attacks!

A team of security experts discovered a ‘Complete Control’ weakness in the Windows operating system which can cause a wide variety of dangerous actions. The problem lies within vulnerable that is exploited by the device drivers and operating system allowing…

door Martin Beltov | Augustus 27, 2019

0 Reacties

Complete Control, kwetsbaarheid, ramen veiligheid, Windows kwetsbaarheid

CYBER NEWS

CVE-2019-14378: QEMU Vulnerability Allows Virtual Machine Escape

CVE-2019-14378 is a new vulnerability in QEMU, een open-source hardware virtualisatie pakket. QEMU emuleert processor van een machine door middel van dynamische binaire vertaling en biedt een set van verschillende hardware en het apparaat modellen voor de machine, waardoor zij een verscheidenheid lopen…

door Milena Dimitrova | Augustus 27, 2019

0 Reacties

CVE-2019-14378, QEMU, virtuele machine, kwetsbaarheid

CYBER NEWS

VPN Services Attacked By CVE-2019-11510 Vulnerability

The CVE-2019-11510 vulnerability is being used against VPN providers worldwide. The available security reports indicate that a criminal collective is actively seeking to break the security barriers of several providers of VPN services. This is done by exploiting a recent…

door Martin Beltov | Augustus 26, 2019

0 Reacties

CVE-2019-11510, VPN Services, kwetsbaarheid