Infosec bits for 2024 week 17

Kgwadi Matenche | April 26, 2024, 3:21 p.m.

Cybersecurity News:

Hackers Offering Admin Access to 3000 Fortinet SSL-VPN [Divya, Cyber Security News]

Palo Alto Networks Shares Remediation Advice for Hacked Firewalls [Eduard Kovacs, SecurityWeek]

GitLab affected by GitHub-style CDN flaw allowing malware hosting [Ax Sharma, Bleeping Computer]

Vulnerabilities & Patches:

Over 1,400 CrushFTP servers vulnerable to actively exploited bug [Sergiu Gatlan, Bleeping Computer]

Hackers backdoored Cisco ASA devices via two zero-days (CVE-2024-20353, CVE-2024-20359) [Zeljka Zorz, Help Net Security]

WP Automatic WordPress plugin hit by millions of SQL injection attacks [Bill Toulas, Bleeping Computer]

Google Patches Critical Chrome Vulnerability [Eduard Kovacs, SecurityWeek]

A Flaw in The Forminator Plugin Impacts Hundreds of Thousands of WordPress Sites [Pierluigi Paganini, Security Affairs]

Breaches & Leaks:

MITRE Corporation Breached by Nation-State Hackers Exploiting Ivanti Flaws [The Hacker News]

Rural Texas Towns Report Cyberattacks That Caused One Water System to Overflow [Associated Press, SecurityWeek]

LA County Health Services: Patients' data exposed in phishing attack [Sergiu Gatlan, Bleeping Computer]

Others:

Major Windows printer security flaw exploited [Daniel Puchert, MyBroadband]

NSA Launches Guidance for Secure AI Deployment [Kevin Poireault, Infosecurity Magazine]