Materials for 23.01.2023

Information security

23-01-2023, 12:24

Orca provided information about 4 server-side request forgery attacks (SSRF)

Orca provided information about 4 server-side request forgery attacks (SSRF) in Microsoft Azure services, including two errors that could be used without authentication for unauthorized access to cloud resources.

0

Information security

23-01-2023, 12:26

In modern conditions, the security of information systems of corporations and government agencies

In modern conditions, the security of information systems of corporations and government agencies is of particular importance, and in 2023 its role will increase even more.

0

Information security

23-01-2023, 12:28

RCE vulnerabilities were discovered in TP-Link and NetComm routers.

RCE vulnerabilities were discovered in TP-Link and NetComm routers. CVE-2022-4498 and CVE-2022-4499 affect TP-Link WR710N-V1-151022 and Archer-C5-V2-160201 SOHO.

0

Information security

23-01-2023, 12:35

Kraken absorbed the Solaris darknet platform after the latter was hacked

Kraken absorbed the Solaris darknet platform after the latter was hacked. Currently, the Tor Solaris website redirects users to Kraken.

0

Information security

23-01-2023, 12:36

Hackers spread Malware in Blank Images

Hackers spread Malware in Blank Images — The researchers of the Avanan information security company found that attackers bypass the VirusTotal service by introducing malware into empty images in emails.

0

Information security

23-01-2023, 12:30

Oracle has announced the release of the first critical update in 2023, which includes 327 new security fixes.

Oracle has announced the release of the first critical update in 2023, which includes 327 new security fixes. At the same time, more than 70 fixes eliminate critical vulnerabilities, and almost 200 fixes eliminate errors that can be used remotely without authentication. Some of the corrected shortcomings affect more than one product of the company. Oracle has announced the release of the first critical update in 2023, which includes 327 new security fixes.

0

Information security

23-01-2023, 12:31

American security forces have detained Anatoly Legkodymov

American security forces have detained Anatoly Legkodymov, the founder of the Bitzlato cryptocurrency exchange registered in Hong Kong, who is accused of collaborating with extortionists and laundering money received from drug trafficking.

0

Information security

23-01-2023, 12:33

Some vendors and users of Adobe Commerce and Magento decided

Some vendors and users of Adobe Commerce and Magento decided to make a difficult choice between "safe" and "convenient". As we reported, the February patch from Adobe, released to eliminate the critical vulnerability of mail templates CVE-2022-24086 (CVSS score 9.8), was actively bypassed by attackers. Some vendors and users of Adobe Commerce and Magento decided

0

Information security

23-01-2023, 12:37

T-Mobile has revealed a new data leak after attackers stole the confidential account information

T-Mobile has revealed a new data leak after attackers stole the confidential account information of 37 million customers through one of the APIs.

0

Information security

23-01-2023, 12:39

As we warned, Horizon3 researchers have uncovered a PoC exploit and presented

As we warned, Horizon3 researchers have uncovered a PoC exploit and presented a technical analysis for the critical RCE vulnerability CVE-2022-47966 in Zoho ManageEngine products.

0

Information security

23-01-2023, 12:40

Cisco has announced fixes for a serious SQL vulnerability in Unified Communications Manager (CM)

Cisco has announced fixes for a serious SQL vulnerability in Unified Communications Manager (CM) and Unified Communications Manager Session Management Edition (CM SME).

0

Information security

23-01-2023, 12:42

Mandiant researchers have determined that a recent Fortinet vulnerability was exploited as a 0-day

Mandiant researchers have determined that a recent Fortinet vulnerability was exploited as a 0-day for malware delivery in October 2022, almost two months before the patch release.

0

Information security

23-01-2023, 12:43

The new Hook Banking Trojan for just $5,000

The new Hook Banking Trojan for just $5,000 a month opens up the possibility for attackers to steal accounts from more than 450 Internet banking applications and crypto wallets.

0

Information security»,NetWork

23-01-2023, 13:05

Thread technology.

Thread technology. • Thread is an open protocol of a local wireless network with a mesh topology, created specifically for communication of IoT devices.

0

Information security»,NetWork

23-01-2023, 13:06

What is IoT?

What is IoT? • The Internet of Things (IoT) is a set of physical objects connected to the Internet and exchanging data. The IoT concept can significantly improve many areas of our lives and help us create a more convenient, smart and secure world.

0

Articles by selected date

Orca provided information about 4 server-side request forgery attacks (SSRF)

In modern conditions, the security of information systems of corporations and government agencies

RCE vulnerabilities were discovered in TP-Link and NetComm routers.

Kraken absorbed the Solaris darknet platform after the latter was hacked

Hackers spread Malware in Blank Images

Oracle has announced the release of the first critical update in 2023, which includes 327 new security fixes.

American security forces have detained Anatoly Legkodymov

Some vendors and users of Adobe Commerce and Magento decided

T-Mobile has revealed a new data leak after attackers stole the confidential account information

As we warned, Horizon3 researchers have uncovered a PoC exploit and presented

Cisco has announced fixes for a serious SQL vulnerability in Unified Communications Manager (CM)

Mandiant researchers have determined that a recent Fortinet vulnerability was exploited as a 0-day

The new Hook Banking Trojan for just $5,000

Thread technology.

What is IoT?

Popular articles

Interesting

Gym Edge v4.2.7

New articles

BetPanda Casino script source code

Bomb Blast Casino scripts source code

Green Dice Casino script source code

Discussing