1395 5E65 0C7A 5CEF 0373 F6E2 8982 15F5 6081 EBEB

Infosec bits for 2024 week 17

Kgwadi Matenche | April 26, 2024, 3:21 p.m.

Cybersecurity News:

  • Hackers Offering Admin Access to 3000 Fortinet SSL-VPN [Divya, Cyber Security News]
  • Palo Alto Networks Shares Remediation Advice for Hacked Firewalls [Eduard Kovacs, SecurityWeek]
  • GitLab affected by GitHub-style CDN flaw allowing malware hosting [Ax Sharma, Bleeping Computer]

    • Vulnerabilities & Patches:

  • Over 1,400 CrushFTP servers vulnerable to actively exploited bug [Sergiu Gatlan, Bleeping Computer]
  • Hackers backdoored Cisco ASA devices via two zero-days (CVE-2024-20353, CVE-2024-20359) [Zeljka Zorz, Help Net Security]
  • WP Automatic WordPress plugin hit by millions of SQL injection attacks [Bill Toulas, Bleeping Computer]
  • Google Patches Critical Chrome Vulnerability [Eduard Kovacs, SecurityWeek]
  • A Flaw in The Forminator Plugin Impacts Hundreds of Thousands of WordPress Sites [Pierluigi Paganini, Security Affairs]

    • Breaches & Leaks:

  • MITRE Corporation Breached by Nation-State Hackers Exploiting Ivanti Flaws [The Hacker News]
  • Rural Texas Towns Report Cyberattacks That Caused One Water System to Overflow [Associated Press, SecurityWeek]
  • LA County Health Services: Patients' data exposed in phishing attack [Sergiu Gatlan, Bleeping Computer]

    • Others:

  • Major Windows printer security flaw exploited [Daniel Puchert, MyBroadband]
  • NSA Launches Guidance for Secure AI Deployment [Kevin Poireault, Infosecurity Magazine]

    • Contact Us:

    csirt {at} sanren.ac.za

    CSIRT:

    0x898215F56081EBEB

    Heloise:

    0x96371C4C9FA23CAC

    Kgwadi:

    0xDD7E5C2E539972EB

    Sicelo:

    0x2346D2ACE7F536B6

    Maajied:

    0xEE9BE86AD16D89C2