Vulnerability: Page 3
-
Delayed Ivanti patch arrives after weeks of exploitation
The company also disclosed two additional high-severity vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure.
By David Jones • Jan. 31, 2024 -
MOVEit liabilities mount for Progress Software
The company revealed multiple government investigations are underway into the MOVEit vulnerability. It’s also party to more than 100 class-action lawsuits.
By Matt Kapko • Jan. 30, 2024 -
AI-generated code leads to security issues for most businesses: report
More than three-quarters of developers bypass established protocols to use code completion tools despite potential risks, Snyk’s research found.
By Lindsey Wilkinson • Jan. 30, 2024 -
Popular CI/CD tool Jenkins discloses critical CVE
The open source automation server software is used by more than 11 million developers globally, according to the project’s supporters.
By Matt Kapko • Jan. 29, 2024 -
Ivanti Connect Secure zero-day patches delayed
Researchers observed attackers attempting to manipulate Ivanti’s internal integrity checker, and the cause for the patch delay remains unclear.
By David Jones • Jan. 29, 2024 -
Nearly 800 GoAnywhere instances are unpatched, exposed to critical CVE
Although patching lags, the number of hosts with publicly exposed and vulnerable admin interfaces are limited.
By Matt Kapko • Jan. 26, 2024 -
GoAnywhere MFT customers confront yet another critical file-transfer CVE
File-transfer services, including GoAnywhere, were widely exploited by ransomware threat groups in 2023.
By Matt Kapko • Jan. 24, 2024 -
Atlassian Confluence Data Center under active exploitation in older versions
Security researchers warn that attacks are rapidly accelerating in recent days.
By David Jones • Jan. 23, 2024 -
CISA issues emergency directive for federal agencies to mitigate Ivanti vulnerabilities
Civilian agencies are under threat following a surge in nation-state linked exploitation of Ivanti Connect Secure and Ivanti Policy Secure devices.
By David Jones • Jan. 19, 2024 -
CISA’s 1,200 pre-ransomware alerts saved organizations millions in damages
The federal agency’s early warning system notified organizations across multiple critical infrastructure sectors of potential impending attacks.
By Matt Kapko • Jan. 19, 2024 -
Ivanti Connect Secure exploitation accelerates as Moody’s calls impact credit negative
A suspected state-linked hacker is manipulating an integrity tool used to check systems as customers still await an initial patch.
By David Jones • Jan. 19, 2024 -
Citrix warns of limited exploitation in a pair of Netscaler zero days
The company said the vulnerabilities are unrelated to CitrixBleed, but urged customers to immediately apply fixes to protect their systems.
By David Jones • Jan. 18, 2024 -
Progress Software shakes off MOVEit’s financial consequences, maintains customers
Executives described the file-transfer service as one of its stronger performing products and said customers remain loyal.
By Matt Kapko • Jan. 18, 2024 -
Ivanti Connect Secure exploitation accelerates, 1,700 devices compromised worldwide
Researchers warn additional threat actors are actively working to take advantage of two chained together vulnerabilities.
By David Jones • Jan. 17, 2024 -
Deep Dive
Progress Software’s MOVEit meltdown: uncovering the fallout
Businesses use the file-transfer service because it checks the compliance boxes for keeping data safe. Though initial attacks were targeted, thousands of bystanding businesses were hit indiscriminately.
By Matt Kapko , Julia Himmel • Jan. 16, 2024 -
Ivanti Connect Secure attacks part of deliberate espionage operation
Researchers warn the previously unknown actor has developed custom malware designed to maintain persistent access on targeted networks and evade detection.
By David Jones • Jan. 12, 2024 -
Ivanti Connect Secure devices face active exploitation, patch schedule staggered
Unauthenticated attackers can take control of systems by exploiting the zero days, which a suspected state-linked threat actor is chaining together.
By David Jones • Jan. 11, 2024 -
Apache OFBiz critical CVE leads to surge in exploitation attempts
A patch for a prior vulnerability failed to resolve the root cause of an issue, leading to additional threat activity.
By David Jones • Jan. 5, 2024 -
CISA seeks comment on secure by design principles to boost global software security
The agency issued an RFI seeking industry input on costs, how to incorporate security into higher education and how to reduce recurring security vulnerabilities.
By David Jones • Dec. 21, 2023 -
Comcast’s Xfinity discloses massive data breach linked to CitrixBleed vulnerability
The breach, involving 35.9 million customers, took place just a week after Citrix released a patch for a critical flaw.
By David Jones • Dec. 19, 2023 -
State-linked cyber actors behind SolarWinds plant seeds for new malicious campaign
U.S. authorities are raising alarms that the 2020 Sunburst attack threat actors are exploiting a CVE in JetBrains TeamCity in preparation for future supply chain compromises.
By David Jones • Dec. 15, 2023 -
CitrixBleed isn’t going away: Security experts struggle to control critical vulnerability
While officials echo urgent mitigation steps to contain the zero-day vulnerability, high-profile organizations continue to bear the impact.
By David Jones • Dec. 14, 2023 -
2 years on, Log4j still haunts the security community
Research from Veracode shows nearly 2 in 5 applications are still running vulnerable versions.
By David Jones • Dec. 8, 2023 -
Progress Software discloses 2 new CVEs in MOVEit
The latest set of vulnerabilities in the file-transfer service brings the total number of disclosed CVEs to eight since a zero-day was widely exploited in late May.
By Matt Kapko • Dec. 7, 2023 -
CISA performance goals program trims exploited CVEs
Organizations enrolled in the agency’s vulnerability scanning program are showing improved security, but the reduction in exploitable internet-facing services is incremental.
By David Jones • Dec. 6, 2023